User's Manual
Table Of Contents
- 7368 ISAM ONT G-120W-F Product Guide
- 1 Preface
- Table of contents
- List of figures
- List of tables
- 2 ETSI ONT safety guidelines
- 3 ETSI environmental and CRoHS guidelines
- 4 ANSI ONT safety guidelines
- 5 G-120W-F unit data sheet
- 5.1 G-120W-F part numbers and identification
- 5.2 G-120W-F general description
- 5.3 G-120W-F software and installation feature support
- 5.4 G-120W-F interfaces and interface capacity
- 5.5 G-120W-F LEDs
- 5.6 G-120W-F detailed specifications
- 5.7 G-120W-F GEM ports and T-CONTs
- 5.8 G-120W-F performance monitoring statistics
- 5.9 G-120W-F functional blocks
- 5.10 G-120W-F standards compliance
- 5.11 G-120W-F special considerations
- 6 Install a G-120W-F indoor ONT
- 7 Replace a G-120W-F indoor ONT
- 8 Configure a G-120W-F indoor ONT
- 9 ONT configuration file over OMCI
- Customer document and product support
Configure a G-120W-F indoor ONT
108
7368 ISAM ONT G-120W-F Product Guide
3FE-46922-AAAA-TCZZA Issue: 01
•
parental control
• DMZ and ALG
• access control
Procedure 25 Firewall configuration
1 Select Security > Firewall from the top-level menu in the GPON Home Gateway window, as
shown in Figure 43.
Figure 43 Firewall window
Firewall security applies only to services provided by the ONT. Internet access from the LAN
side is not affected by this firewall.
Three security levels are available: Low, Medium, and High.
At the Low level, pre-routing is supported: port forwarding, DMZ, host application, and host
drop. Also supported are application services: DDNS, DHCP, DNS, H248, IGMP, NTP client,
SSH, Telnet, TFTP, TR-069, and VoIP.
At the Medium level, pre-routing is supported: port forwarding, DMZ, host application, and
host drop. Also supported are application services: DDNS, DHCP, DNS, H248, IGMP, NTP
client, TFTP, TR-069, and VoIP. The following types of ICMP messages are permitted: echo
request and reply, destination unreachable, and TTL exceeded. Other types of ICMP
messages are blocked. DNS proxy is supported from LAN to WAN but not from WAN to LAN.
At the High level, pre-routing and application services are not supported. UDP Port 8000 can
be used to access the services, for example FTP can use 8021 and Telnet can use 8023.
Regular UDP cannot be used. RG access is permitted via the LAN side but not via the WAN
side.
Table 32 describes the fields in the firewall window.
R05.06.01 | June 2017 | Edition 01