PointRed Telecom Ltd. MCRD-2458 Manuel D’Utilisation
M i c r o R e d & M i c r o V i e w N M S U s e r M a n u a l v 1 . 0
Page 107
Figure 105. HotSpot Wizard NAT & Protection Tab
Protection Level
Protection is performed through firewall rules. According to the protection
level used, appropriate firewall rules will be generated. (The comment
“Added_By_Hotspot” will be automatically generated.)
Protection is performed through firewall rules. According to the protection
level used, appropriate firewall rules will be generated. (The comment
“Added_By_Hotspot” will be automatically generated.)
Warning: All pre-configured firewall rules will be dropped.
There are four levels of protection:
No Protection
There is no protection. All traffic is accepted both from WAN and HotSpot
interfaces.
There is no protection. All traffic is accepted both from WAN and HotSpot
interfaces.
Low Protection
Policy of the Input firewall chain will be set to Drop. The following
configuration will be applied to the firewall subsystem.
Policy of the Input firewall chain will be set to Drop. The following
configuration will be applied to the firewall subsystem.
Traffic Coming from the WAN Interface
Type Action
Comments
Connections Related or
Established
Accepted
Traffic initiated from
router or HotSpot Users
SSH Connection
Accepted
New SSH connection
SNMP Accepted
SNMP
request
MNMS connection
Accepted
New MNMS connection
ICMP traffic
Limited to
5/sec
All ICMP types
UDP port 500 and Protocols
AH, ESP (IPsec)
Accepted IPsec
traffic
Everything else
Dropped
Traffic Coming from HotSpot Interfaces