ARRIS Horizontal Logo
Company | Solutions Services Products
Consumers - SBG6580-2: Firewall Setup
FAQs

ARRIS Consumer Care

Article

SBG6580-2: Firewall Setup

Printable View
« Go Back

Information

 
Question
How do I configure the firewall in SBG6580-2?
Answer
The SBG6580-2 Firewall has various settings related to blocking or exclusively allowing different types of data through the router from the Internet to the home network.  Even if specific web content is allowed on the computer level, it can be blocked on the router/gateway level using the firewall options.  By default, the Firewall is set at the Low level.  This document describes how to set up the SBG6580-2 firewall.

NOTE: It is recommended to keep the firewall between the Low and High levels.


Firewall Setup
  1. Launch a Firefox or Safari browser.  Enter http://192.168.0.1 into the address box, and press the Enter key.  

    NOTE: A browser message on Chrome, Edge, Firefox, and Opera, may appear when accessing the Web Manager.  The message includes 192.168.01 uses an unsupported protocol and ERR_SSL_VERSION_OR_CIPHER_MISMATCH.  The Web Manager uses an earlier version of the TLS protocol and does not match the version allowed by the web browser.  Safari browsers on Apple PC and mobile devices are not impacted.  The workaround to access the Web Manager with a PC is to use the Firefox browser and set the TLS version to 1.  For workaround instructions refer to article # 19435 - 192.168.0.1 uses an unsupported protocol. 
     
  2. A security or private risk alert may appear on the web browser advising users to proceed with caution when accessing the Web Manager.  There is no risk in proceeding to the Web Manager.  For instructions to bypass the alert screen, refer to article # 18181 - Alert Message for Web Manager Access.
     
  3. On the Login page, enter admin or a customized username in the Username field.
     
  4. Enter password or a customized password in the Password field.

    NOTE: On later versions of the SBG6580-2, the Wi-Fi Security Key is used as the default admin password printed on the bottom white label.  For assistance with Web Manager Access, refer to article # 18752 – SBG6580-2: Web Manager Access.

    User-added image
     
  5. Click the Login button.  The Home page will appear.

    User-added image
     
  6. Move the mouse cursor over Firewall on the main menu and click the Protection Level link on the sub-menu.  The Firewall - Protection Level page will appear.  

    User-added image
     
  7. On the Firewall - Protection Level page under the Firewall Protection Level section, click the Firewall Protection Setting drop-down menu and select the level of protection (Low, Medium, or High).  The following are descriptions for each option: 
    • Off - Default setting.  No security, highest risk.  No services are restricted.
    •  Low - Minimum security, higher risk.  No services are restricted
    • Medium - Safe configuration, modest risk.  Port Forwarding and DMZ setup will be blocked and some services are restricted.  Click here to see Allowed Services list.
    • High - Safest configuration, highest security.  Port Forwarding and DMZ setup will be blocked and some services are restricted.  Click here to see Allowed Services list.
  8. Under the Firewall Settings section, check the Block Fragmented IP Packets box to prevent all fragmented IP Packets from passing through the firewall.
  9. Check the Port Scan Detection box to detect and block port scan activity from the Internet and in the home network.
  10. Check the IP Flood Detection box to detect and block packet floods originating from the Internet and in the home network.    
  11. Click the Apply button under the Firewall Protection Level section.  A restart is not required, as the Firewall settings will immediately go into effect.

    Right click on the image to save it to your computer.

Allowed Services List
The following table list the type of services allowed by Firewall Protection levels.
 
Allowed ServicesFirewall Protection
ServicePortProtocolOffLowMediumHigh
AIM / ICQ5190TCPAllowedAllowedAllowedBlocked
DHCPv6546UDPAllowedAllowedAllowedBlocked
DNS53TCP / UDPAllowedAllowedAllowedAllowed
FTP-S989-990UDPAllowedAllowedAllowedBlocked
HTTP80TCPAllowedAllowedAllowedAllowed
HTTP Alternate8080TCPAllowedAllowedAllowedBlocked
HTTP-S443TCPAllowedAllowedAllowedAllowed
IMAP143TCPAllowedAllowedAllowedBlocked
IPSec NAT-T4500TCPAllowedAllowedAllowedAllowed
NTP123UDPAllowedAllowedAllowedAllowed
POP3110TCPAllowedAllowedAllowedBlocked
POP3-S995TCPAllowedAllowedAllowedAllowed
Radius1812TCP / UDPAllowedAllowedAllowedBlocked
SMTP25TCPAllowedAllowedAllowedAllowed
SMTP-S435TCPAllowedAllowedAllowedBlocked
SSH22TCPAllowedAllowedAllowedAllowed
Steam1725UDPAllowedAllowedAllowedBlocked
Steam Friends1200UDPAllowedAllowedAllowedBlocked
Telnet-S992TCPAllowedAllowedAllowedBlocked
XBOX Live3074TCP / UDPAllowedAllowedAllowedBlocked
World of Warcraft3724TCP / UDPAllowedAllowedAllowedBlocked
Yahoo Messenger5050UDPAllowedAllowedAllowedBlocked
Other ServicesAllowedAllowedBlockedBlocked

Feedback

 

Was this article helpful?


   

Your feedback is appreciated.

Characters Remaining: 255

 
Print
Follow Us        
Company
Products
 
1995 - 2024 ARRIS Group, Inc. All Rights Reserved
 -->