PC Concepts Full-Rated Router ADSL2+ User Manual

81

Accept, so that LAN computers have access to the ADSL/Ethernet routers' Internet

connection.

z

The

term DMZ (de-militarized zone), in Internet networking terms, refers to computers

that are available for both public and in-network accesses (such as a company's public

Web server). Packets received on a DMZ interface -- whether from a LAN or external

source -- are subject to a set of protections that is in between public and private

interfaces in terms of restrictiveness. The global setting for DMZ-type interfaces may be

set to Deny so that all attempts to access these servers are denied by default; the

administrator may then configure IP Filter rules to allow accesses of certain types.

5.7.5 Bridge

Filter

Bridge filter rules can be created to control the forwarding of incoming and outgoing data

between your LAN and the Internet and within your LAN. Bridge filter rules make decisions

based on the structure of the "layer 2" data packets (e.g., Ethernet packets) received on the

device interfaces, unlike IP filter rules, which are based on the structure of "layer 3" (e.g., IP)

packets.

Rule ID: Each rule must be assigned an ID number. Rules are processed from lowest to

highest on each data packet, until a match is found. Rule numbers up to 99 are reserved for

preconfigured system rules. Rule IDs must start at 1000 or above so that they do not interfere