3DES
AES
Automatic IPSec
DES
DHCP
DNS
Gateway
HEX
ICMP
ICMP Code
ICMP Type
ICMPv6
IP
IPSec
IPv4
IPv6
MAC
MTU
Manual IPSec
Mobile IPSec
Network Types
PPS
PPTP
QoS
QoS Bandwidth
QoS Bandwidth Default
QoS Bandwidth Maximum
QoS Borrow
QoS ECN
QoS Priority
QoS RED
RIJNDAEL
TCP Destination Port
TCP Forward Port
TCP Source Port
Timeout Frags
Timeout Interval
Timeout Source Track
VLAN
VLAN Tag
VPN
Tripple DES is much more secure than normal DES
AES
AES is one of the crypto algorithms used by Halon, it may also be known as RIJNDAEL
Automatic IPSec
Automatic IPSec is a way to secure the transfer of tcp/ip packet between two computers using a predefined key, then on both sides there will be a service that will maintain and update the crypto keys, see IPSec, Manual IPSec and Mobile IPSec.
DES
DES is one of the crypto algorithms used by Halon
DHCP
Dynamic Host Configuration Protocol, distributes IP addresses to clients as they connect to the network, unlike static IP-addresses, where the client already know what IP it will use.
DNS
Domain Name System resolves hostnames to ip-addresses.
Gateway
Every computer communicating to other computers than just the ones on it's network must have a gateway, the gateway specifies to which computer packets not address the the local-network will be passed. That computer must then pass the packets to the next computer in the path. A gateway is needed for both IP and IPv6.
HEX
Is a number system from 0-F (A=10,B=11,C=12,D=13,E=14,F=15).
ICMP
ICMP is a protocol like TCP and UDP, it operates over IP or IPv6, see ICMPv6
ICMP Code
The ICMP Code extends the ICMP Type as it sets a "return code" for the packet, eg. Type:3 Code:1 means that "the destination is unreachable because (and it's here the code comes in) the host is unreachable. See ICMP Type.
ICMP Type
A ICMP Type defines the type of ICMP packet being sent, eg. Type:3 are "Destination Unreachable", Type:0 is a ICMP Reply and a Type:6 is a ICMP Request.
ICMPv6
ICMP is a protocol like TCP and UDP, it operates over IP or IPv6, see ICMP
IP
In order to connect to a machine using IP both machines must have a IP-address, this is a numeric address separate by dots from 1 to 255, like 127.0.0.1. See IPv6.
IPSec
IPSec is a way to secure the transfer of tcp/ip packet between two computers, see Manual IPSec, Automatic IPSec and Mobile IPSec.
IPv4
See IP.
IPv6
IPv6 works similar to IP, but the address-space is much bigger and the address is made by 8 semicolon separated HEX-string from 00 to FF. like F0:FF:12:00:DA:45:11:31.
MAC
Every Ethernet Hardware have it's own unique ID, this ID is used to identify hardware on a lower level than IP.
MTU
Maximum Transmission Unit specifies the largest size for a datagram that will be passed through the firewall.
Manual IPSec
Manual IPSec is a way to secure the transfer of tcp/ip packet between two computers using a predefined crypto keys, see IPSec, Automatic IPSec and Mobile IPSec.
Mobile IPSec
Mobile IPSec is a way to secure the transfer of tcp/ip packet between a mobile client and a gateway computers using a username and a passphrase, see IPSec, Automatic IPSec and Manual IPSec.
Network Types
You can optimize your network for you type of connects, normal suites any type of network, high-latency are good for satellite connections, aggressive are for highly access firewall as it drops old states quickly while conservative hold on to old states for as long as possible.
PPS
Pings for second, sets the maximums pings the firewall will respond to, this is a good protection for ping attacks.
PPTP
Point-to-Point-Tunneling Protocol, is a network protocol making it possible to connect to a virtual private network VPN.
QoS
QoS stands for Quality of Service, it enables you to set the (QoS) Priority and amount of (QoS) Bandwidth different services will be using.
QoS Bandwidth
Specifies the amount of bandwidth that will be given to a certain queue. This does only affect the speed and not the delay like (QoS) Priority.
QoS Bandwidth Default
Sets the default bandwidth for that interface, to be used when there is no available queues for the matching firewall policy.
QoS Bandwidth Maximum
Sets the maximum bandwidth for that interface.
QoS Borrow
The borrow option enables a queue to exceed it's (QoS) Bandwidth when possible.
QoS ECN
Explicit Congestion Notification, which implies (QoS) RED, tells compatible clients to hold back traffic as the queue length increases.
QoS Priority
Specifies the priority of a given queue, this is not the same as (QoS) Bandwidth, a higher Priority lets the packet jump ahead in the queue, so this doesn't affect the amount of packets, just the delay unlike (QoS) Bandwidth.
QoS RED
Random Early Detection avoids network congestion.
RIJNDAEL
RIJNDAEL is one of the crypto algorithms used by Halon, it may also be known as AES.
TCP Destination Port
This is the port the packet have for its destination. eg. port 80 for a http server.
TCP Forward Port
The port the packet will be forwarded to, this gives you the possibility to have different internal and external ports and a service. This only applies to packet forwards.
TCP Source Port
This is the port the packet comes from, this is often on the client side a random port from 1024 to 65535.
Timeout Frags
Sets the time until unassembled fragment expires.
Timeout Interval
How often the firewall will clean up packet fragments and expired states.
Timeout Source Track
The seconds to keep a source tracking entry in memory after the last state expires.
VLAN
Virtual Local Area Network makes it possible to segmentate networks on a switch, each VLAN is tagged with a VLAN Tag.
VLAN Tag
A number to separate different VLAN.
VPN
Virtual Private Network enables clients to dial-in to a already existing network from a remote place making himself a part of the network.