User's Manual
Table Of Contents
- Choose a Computer and Connection Type
- Ethernet Connection
- Wireless Connection
- USB to PC Connection
- Connecting to VDSL via CoAX
- Setting Up IPTV
- Gateway (System) Pages
- Broadband Link Pages
- Home Network Pages
- Firewall Pages
- Accessing the Management and Diagnostic Console
- System Summary Page
- Broadband Link - Summary Page
- Broadband Link - Statistics Page
- Broadband Link - Configuration Page
- Local Network - Status Page
- Local Network - Statistics Page
- Local Network - Device List Page
- Local Network - Wireless Settings Page
- Local Network - Configuration Page
- Enabling Router Behind Router Alert
- Local Network - Address Allocation Page
- Local Network - Configure the MoCA Network Page
- Local Network - MoCA Statistics Page
- Firewall - Settings Page
- Firewall - Detailed Information Page
- Firewall - Advanced Settings Page
- Troubleshooting - DSL Diagnostics Page
- Troubleshooting - Event Log Page
- Troubleshooting - Network Tests Page
- Troubleshooting - Upgrade History Page
- Troubleshooting Resets Page
- Advanced - Syslog Settings Page
- Advanced - Provisioning Info Page
- Advanced - Configure Time Services Page
- Advanced - Configure Services Page
- Advanced - DNS Resolve Page
- Advanced - Link Manager States Page
- Advanced - Detailed Log Page
- Step 1: Enable Public Network Mode
- Step 2: Allocate Public IP Addresses to the LAN Clients
- Step 3: Configure Firewall Rules
- Sample Configuration
- LED overview
Gateway User Interface
26
Firewall Pages
The 2Wire gateway has a professional-grade firewall to help prevent unauthorized users from accessing your
local network. The 2Wire gateway firewall includes the following features:
• Stateful packet inspection. Blocks common Denial of Service attacks (such as SYN/FIN flooding or
Smurf), and detects and logs TCP and UDP port scans.
• Stateless packet inspection. Filters specific NetBios traffic, suspicious packets and IP fragments;
blocks packets sent from the private network to the Internet that have spoofed IP addresses.
• Network Address Translation (NAT). Translates a local network’s IP address to an external address
maintained by the 2Wire gateway, effectively “hiding” the existence of a home network to the Internet.
The 2Wire gateway then uses this external address to communicate with the Internet on behalf of
devices connected to the local network.
• Port Address Translation (PAT). A function provided by some routers which allows hosts on a LAN to
communicate with the rest of a network (such as the Internet) without revealing their own private IP
address. All outbound packets have their IP address translated to the router’s external IP address.
Replies come back to the router, which then translates them back into the private IP address of the
original host for final delivery. During PAT, each computer on the LAN is translated to the same IP
address, but with a different port number assignment.
• Inbound and outbound port blocking. Blocks common inbound and outbound protocol types from
passing information to or receiving information from the Internet.
Viewing Your Firewall Summary
The Firewall Summary page provides summary information and links to the most commonly used security-
related features of your system.