Compal Broadband Networks Inc. CH6643 User Manual
51
Field Descriptions for the Dynamic DNS Section
Field
Description
Enable
Check the box to enable Dynamic DNS.
Dynamic DNS
Provider
Provider
Choose your Dynamic DNS provider from the drop down
menu.
menu.
User Name
Enter the user name for your Dynamic DNS account.
Password
Enter the password for your Dynamic DNS account.
Hostname
Enter the host name that you registered with your
Dynamic DNS provider.
Dynamic DNS provider.
Status
Indicate the status of DDNS service.
Advanced Intrusion Detection Section
The CH6643E Intrusion Detection sections allow you to configure the CH6643E
firewall filters and firewall alert notifications. The CH6643E firewall protects the
CH6643E LAN from undesired attacks and other intrusions from the Internet. It
provides an advanced, integrated stateful-inspection firewall supporting intrusion
detection, session tracking, and denial-of-service attack prevention. The firewall:
firewall filters and firewall alert notifications. The CH6643E firewall protects the
CH6643E LAN from undesired attacks and other intrusions from the Internet. It
provides an advanced, integrated stateful-inspection firewall supporting intrusion
detection, session tracking, and denial-of-service attack prevention. The firewall:
•
Maintains state data for every TCP/IP session on the OSI network and transport
layers.
layers.
•
Monitors all incoming and outgoing packets, applies the firewall policy to
each one, and screens for improper packets and intrusion attempts.
each one, and screens for improper packets and intrusion attempts.
•
Provides comprehensive logging for all
•
User authentications
•
Rejected internal and external connection requests
•
Session creation and termination
•
Outside attacks (intrusion detection)
The predefined policies provide outbound Internet access for computers on the
CH6643E LAN. The CH6643E firewall uses
CH6643E LAN. The CH6643E firewall uses
stateful-inspection
to allow inbound
responses when there already is an outbound session running that corresponds to
the data flow. For example, if you use a web browser, outbound HTTP
connections are permitted on port 80. Inbound responses from the Internet are
allowed because an outbound session is established.
the data flow. For example, if you use a web browser, outbound HTTP
connections are permitted on port 80. Inbound responses from the Internet are
allowed because an outbound session is established.
When required, you can configure the CH6643E firewall to allow inbound packets
without first establishing an outbound session. You also need to configure a port
forwarding entry on the
without first establishing an outbound session. You also need to configure a port
forwarding entry on the
Advanced Port Forwarding Section
or a DMZ client on
the
Advanced DMZ Host Section.