Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Equipment Support » Hardware By Brand » Efficient » Configuring firewall Efficient Network 5835 DMT Router
Uniqs:
475		 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·FAQ-Efficient Forum ·5260 to 5660 FAQ ·Tweaks ·DrTCP ·Efficient Networks Website ·Common Application Ports
« Siemens SpeedStream 4200 FirmWare UpGrades  

Ed

@xs4all.nl

Configuring firewall Efficient Network 5835 DMT Router

Hi,

We are using aSiemens Efficient Network 5835 DMT Router.

Ik want to configure the firewall to block incoming DNS traffic, all other traffic may go trough because there is a Sonicwall firewall behind this router.

If there is an other way to stop DNS relay on this router that solution is welcom.

Traffic that needs to pass through is:
SMTP
HTTP
HTTPS
RDP
PPTP
NTP
TCP port 587

Will this script work?

# Firewall script - 2/28/2003
# For DSL router

#flush all existing filters
remote ipfilter flush input internet
remote ipfilter flush output internet
remote ipfilter flush transmit internet
remote ipfilter flush receive internet
eth ip filter flush input
eth ip filter flush output
eth ip filter flush transmit
eth ip filter flush receive

Firewall allow –a http –d both
Firewall allow –a dns –d out
Firewall allow –a https –d both
Firewall allow –a smtp –d both
Firewall allow –a pptp –d both
Firewall allow –a tcp –d both
Firewall allow –a rdp –d both
Firewall allow –a ntp –d both
Firewall allow –p tcp –dp 587 –d out
Firewall allow –p tcp –dp 587 –d in
Firewall allow –p tcp –sp 587 –d out
Firewall allow –p tcp –sp 587 –d in

#allow all icmp to and from the router
remote ipfilter insert input accept -p icmp internet remote ipfilter insert output accept -p icmp internet

#drop all packets not allowed above
remote ipfilter append input drop internet remote ipfilter append output drop internet

system deltelnetfilter LAN ??what is this command for??
system delhttpfilter LAN ??what is this command for??
system delsnmpfilter LAN ??what is this command for??
system delsyslogfilter LAN ??what is this command for??
system securemode set wan trusted ??what is this command for??

env set security min ??what is this command for??

Save
permalink · 2009-04-20 13:47:08 · Print · Reply to this

adsldude
always learning
Premium,Ex-Mod 2003-9
join:2000-11-10
Colorado

Re: Configuring firewall Efficient Network 5835 DMT Router

If DNS is all you want to impact then focus on just that.

firewall on
firewall deny -p udp -dp 53 -q -d both
save
permalink · 2009-04-20 17:28:01 · Reply to this
Forums » Equipment Support » Hardware By Brand » Efficient« Siemens SpeedStream 4200 FirmWare UpGrades  

Tuesday, 01-Dec 00:48:44 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [56] Baltimore To Ban Lazy Cable Installs
· [47] Broadband Killed The Game Console
· [33] Rural Carriers Quickly Embracing Fiber
· [28] AT&T Top Lobbyist Cicconi Has His Feelings Hurt
· [24] Charter Exits Chapter 11
· [21] Midcontinent Socked With Easement Lawsuit
· [3] Monday Morning Links
· [2] Monday Evening Links
Most people now reading
· Is Microsoft Technet ok to use for my family PC's? [Microsoft Help]
· Connecting to Google Voice Via SIP [VOIP Tech Chat]
· Windows 7 boot manager editing questions [Microsoft Help]
· Are GPS's better today? [General Questions]
· [Internet] Gaming problem for "Heroes of Newerth" ( New bell Upd [Bell Canada]
· [Rant] called out sick! [Rants, Raves, and Praise]
· Opening a file download dialog from a JavaScript function. [Webmasters and Developers]
· Considering Leaving Vonage, who should I Consider? [VOIP Tech Chat]
· filling an in-ground pool [Home Repair & Improvement]
· Fun screwing with PuG raids. [World of Warcraft]