Enhancing Broadband
  All Products Modems Routers Business Wireless Forum News Contact Us  

 
All Products
Modems
Routers
    ST PRO
    ST PRO Firewall
    ST 510r3
    ST 510v4
    ST 530
Business
Wireless

Forum
News Press
Contact Us

Disable / Enable the Application Level Gateway's (ALG's)

The SpeedTouch 500 / 600 firewall features include Application Level Gateways, (ALG’s) which provide intrusion prevention as IP packets are re-assembled, meaning that intrusion attempts through fragments are not possible!

An ALG for these NAT/PAT-sensitive protocols (IP6TO4, GRE, PPTP, ESP, IKE, SIP, JABBER, ILS, H245, H323, RAUDIO(PNA), RTSP, IRC, FTP) supports Protocol Anomaly Detection (PAD) inspections of each packet, allowing approved packets to pass though the NAPT without the need for static bindings (pinholes).

Packets that do not comply to the protocol standard, including packets with proprietary variation to the standard will be dropped

Unbinding the specific ALG from it's port will prevent packet rejection. Static bindings (Pinholes will need added to allow incoming WAN traffic to cross the NAT, unless your application supports UPnP.

Instructions:

1. Open a Telnet session to your router either through the RUN dialog box or via the DOS prompt.

2. Enter the router security username/password if required, and enter CLI command =>nat bindlist for information on ALG's currently bound to ports.

3. Type =>nat unbind to remove ALG from port. Example below is for SIP.

4. Type =>saveall to save changes and =>exit to close telnet session.


 

Copyright of Connectplay Ltd.