Everything you ever wanted for your network + more
By Red Squirrel
This router includes some nice logging features to let you know, and can even mail you immediately when a DoS attack or port scan is detected. You can choose what to include in the log by checking the checkboxes. You can also have it sent to a syslog server if you want.
You can also block sites based on keywords, while this features is very simplistic and not meant to replace a system such as Websense or Novell BorderManager, it will do the job for a home based network, to keep horny kids off porn sites, or if you want to block malicious ads like Casalemedia and tribalfusion popups, which make it past Firefox somehow. (Note: this may not stop the popup itself from loading as the code won't be blocked if it's on the trusted site, but it should stop any remote stuff from the blocked sites from loading in the popup)
Note: This feature does not work for https sites, and has a 32 word limit, so for more advanced blocking you're better off enforcing a proxy and disallowing outbound connections to port 80 and 443.
By default for outbound connections, nothing is blocked, while everything is blocked from coming in. By using services (we'll look at that after) you can create rules for denying access to outbound ports/IPs, and allowing inbound ports/IPs. (port forwarding, basically). This piggy backs on the services. So Let's say you want to forward port 80 to 10.1.1.10 well you choose the HTTP service to be allowed inbound and pick the IP it is sent to.
The services menu enables you to create custom services, so when forwarding, you are not limited to the pre-made services. This is very similar to how rules are managed on a SonicWall.
In the rule menu, when creating a rule you can choose to block by schedule or allow by schedule. This is where you setup a schedule. Unfortunatly you can't have separate schedules for separate rules, but perhaps something that will come with a later firmware. But this is still good for if there's some services such as an ftp server that you only use for work. So you can setup your schedule to cover your work hours only, so services you use from work will be enabled during that time, and that time only, increasing security, as you don't have to worry about it being accessible while you are sleeping, for example. You can also set the router to sync with a time server.
You can choose to set email notifications on, if you want to be emailed for certain events such as regular log emails, or immediate alerts on if you are under attack.
Virtual Private Network
In simple terms, VPN enables you to establish a secure, encrypted connection to this router from the internet, or from another router. A VPN link is almost as if the two networks were physically connected together, hence Virtual Private Network. This router supports various types of VPN such as site to site VPN. I'm not a VPN expert so in order to not give out any wrong information I'll simply give you screenshots of the VPN options.
On the next page we'll take a look at the maintenance category and what it has to offer.
This site best viewed in a W3C standard browser at 800*600 or higher
Site design by Red Squirrel | Contact
© Copyright 2019 Ryan Auclair/IceTeks, All rights reserved