This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
advanced-firewall [2023/05/28 03:47] – [The Firewall page allows you to configure options to protect/facilitate certain network communications.] -change back to body text hogwild | advanced-firewall [2023/05/28 04:13] – [NAT] -resize "advanced-firewall-NAT.jpg" to 454x113 hogwild | ||
---|---|---|---|
Line 1: | Line 1: | ||
====== Firewall ====== | ====== Firewall ====== | ||
- | The Firewall page allows you to configure options to protect/facilitate | + | The Firewall page allows you to configure options to protect |
===== Firewall ===== | ===== Firewall ===== | ||
- | {{: | + | {{: |
**Limit communication to: **This specifies the maximum number of requests per second to which the Firewall will reply. Setting a limit number is recommended to prevent DDoS attacks.\\ | **Limit communication to: **This specifies the maximum number of requests per second to which the Firewall will reply. Setting a limit number is recommended to prevent DDoS attacks.\\ | ||
- | | + | |
**Enable DCSP Fix: **Checking this enables a workaround for packet marking, a well-known issue related to DSCP when connected to Comcast. | **Enable DCSP Fix: **Checking this enables a workaround for packet marking, a well-known issue related to DSCP when connected to Comcast. | ||
- | **Allow DHCP Spoofing:** | + | **Allow DHCP Spoofing: ** |
+ | |||
+ | **Smart MTU black hole detection:** | ||
- | IPv6 IPSec Passthrough - Enabling this allow IPSec tunnels to pass through the firewall. It opens port 500 and the " | ||
===== NAT ===== | ===== NAT ===== | ||
- | NAT loopback | + | **NAT loopback:** This technique allows LAN devices to access |
* All | * All | ||
Line 26: | Line 27: | ||
* Disabled | * Disabled | ||
- | **NAT target** - Defines | + | \\ |
+ | |||
+ | {{:: | ||
+ | |||
+ | **NAT target** - This defines | ||
\\ | \\ | ||
- | \\ {{: | ||
- | **Enable IGMP proxy** - Runs the IGMP (Internet Group Management Protocol) service on the router. | + | ===== Multicast ===== |
- | **LAN0/ | + | \\ \\ {{: |
+ | |||
+ | **Enable IGMP proxy** - Checking this enables the IGMP (Internet Group Management Protocol) service. | ||
+ | |||
+ | LAN0 - LAN3 Specifies which bridges will be participate | ||
+ | |||
+ | * LAN0 - Checking this specifies the LAN0 bridge will participate in IGMP. | ||
+ | * LAN1 - Checking this specifies the LAN1 bridge will participate in IGMP. | ||
+ | * LAN2 - Checking this specifies the LAN2 bridge will participate in IGMP | ||
+ | * LAN3 - Checking this specifies the LAN3 bridge will participate in IGMP | ||
+ | |||
+ | \\ | ||
**Enable quick leave** - This is a feature of IGMP v2. This allows the router to stop the streaming of a multicast to an IP address as soon as that end device sends the quick leave IGMP packet. | **Enable quick leave** - This is a feature of IGMP v2. This allows the router to stop the streaming of a multicast to an IP address as soon as that end device sends the quick leave IGMP packet. |