User Manual

29
7. Firewall
7.1. Enable
The Broadband router provides extensive firewall protection by restricting connection
parameters, thus limiting the risk of hacker attacks, and defending against a wide array of
common Internet attacks. However, for applications that require unrestricted access to the
Internet, you can configure a specific client/server as a Demilitarized Zone (DMZ).
7.2. Advanced
If you are using some VPN access for your work or other purpose, you can enable the
options here to pass the VPN packets correctly. These options are enabled by default, the
router is not a VPN server or client, it only pass through the packets.
Note: For VPN connections, it might require to open some ports when you run your PC
behind a router. For port information, please refer to each VPN software’s help site.
7.3. Demilitarized Zone (DMZ)
If you have a client PC that cannot run an Internet application (e.g. Games) properly from
behind the NAT firewall, then you can open up the firewall restrictions to unrestricted
two-way Internet access by defining a DMZ Host. The DMZ function allows you to re-direct
all packets going to your WAN port IP address to a particular IP address in your LAN. The
difference between the virtual server and the DMZ function is that the virtual server
re-directs a particular service/Internet application (e.g. FTP, websites) to a particular LAN
client/server, whereas DMZ re-directs all packets (regardless of services) going to your
WAN IP address to a particular LAN client/server.