Wireless MAXg ADSL Gateway
User Guide
Home Installation Configuration Help
Introduction Features Warranty Copyright Regulatory
Notes about Your Gateway Features
The gateway's MAXg feature provides a maximum speed of up to 125 Mbps, delivering large
files like MP3s, digital photos, and digital video through your network fast and efficiently. And
with MAXg, your network is protected with a maximum security suite of capabilities, including
Wi-Fi Protected Access (WPA), WPA2/802.11i (AES Encryption), MAC address authentication,
and more.
In addition to providing state-of-the-art wireless connectivity, your MAXg gateway includes
an integrated print server, allowing you to share your USB printer with other computers on
your network and a 4-Port Ethernet switch for connecting Ethernet devices.
Firewall - Stateful Inspection
The U.S. Robotics Wireless MAXg ADSL Gateway provides firewall stateful inspection for
intrusion detection. The gateway tracks all packets originating from the LAN and records
each connection's address pair and the TCP/UDP port pairs. When receiving TCP/UDP packets
from the Internet, the IP addresses and port numbers must match the tracking records.
Otherwise, the gateway drops the packet.
For ICMP packets, only outgoing ICMP request packets originating from the LAN are
forwarded to the Internet, and its related incoming ICMP reply packets from the WAN side
are allowed to come into the LAN. For example, you can ping any device on the Internet from
a computer on the LAN, but you cannot ping the gateway or any LAN device from the
Internet.
Also, the gateway does not let ICMP redirect packets in, since they could be used to reroute
traffic through attacking machines. The only exception to the above firewall rules occurs
when remote technical support access is explicitly allowed by the local user. The gateway
then responds to ping request packets and allows remote access to the gateway's Web User
Interface (WUI). The gateway firewall also prevents LAND attacks and SYN floods:
SYN floods: the gateway firewall drops all unsolicited TCP SYN requests received from
the Internet.
Land attacks: this type of attack forces a victim machine into an unending loop. The
gateway firewall can prevent such attacks by disallowing any packets with the same
source and destination address.
Security - Remote and Local Access Accounts
The U.S. Robotics Wireless MAXg ADSL Gateway WUI provides a local admin account,
a local non-administrative user account, and a remote technical support account, all
with password protection. The support account allows the local administrative user to
第 1 頁,共 2 頁U.S. Robotics Wireless MAXg ADSL Gateway User Guide
2005/7/4file://C:\Documents%20and%20Settings\ivonne\Local%20Settings\Temp\Rar$EX60.547\featu...
To Next Page
Loading...