Program selects protocols, ports, filters, sockets, packet types, services and network address translation (NAT) for the hackerproof, low cost, robust independent hardware firewall. Economical security, smartcard programmable key, Internet Protocol (IP) secure, inexpensive, solutions, filtering, robust, stand alone, maintenance free, hacker proof, user tranparent, PC platform independant, Matching, BPDU, ARP, SNAP, XNS, NetBios, ICMP, TCP, UDP, internetworking, Ethernet, NAT, data protection, ISO, menu driven, Fire Wall, 10Base2, 10BaseT, Hackers, TCP/IP, DNS, HTTP, FTP, System, Masking, Safe, Intranet Firewall, menu-driven, Appletalk, Virtual Private Net, VPN, Hack, Socket, IP, MAC Filter, Management Software, extranet, smartcards, smart cards, access control device, mechanism

Specifying Filters for the LuciGate Firewall via The KeyCutter Menus

Hackerproof, low cost, economical, hardware Ethernet IP Firewall, Network Security. Packet Types, Ports, Sockets Filters, Address Translation, Independent, Transparent, Maintenance Free

Download a demonstration version of the KeyCutter Program

LGDemo.zip (1656 KBytes) 32 bit version for Win95/NT only

The KeyCutter program allows the specification of twenty two separate filter mechanisms. Fourteen of these may be active concurrently. Select the following links to display the various menus for the KeyCutter program. (Note: these pages contain large images so if you wish to study the various menus in detail you are advised to download the demo program)

Packet Types (14K)

Ethernet packet types selectable by name are ARP and IP, but the user may specify other types by value to be allowed through the LuciGate Firewall.

Permitted Protocols

Permitted IP protocols can be selected such as ICMP, TCP or UDP. Other protocols may also be specified by value.

Filter MAC Addresses

Filtering may be performed on Source MAC address and/or Destination MAC address with the user providing lists of qualifying addresses.

Filter IP Addresses

IP address filtering may be on Source and/or Destination IP address but can be one of several options: Direct IP address list, Direct IP Network address list with address mask, IP address translation or IP Network Address Translation (NAT) with address mask. Only one type may be active at a time, but Source and Destination can be of a different type.

Services

TCP/UDP Ports determine which services are accessed on Host computers and also identify different users or tasks operating from the same remote computer. As they are very specific their use as filters is very efficient for controlling access to services. The LuciGate Firewall user is able to select from several well known services, Telnet, FTP, SMTP etc. or provide a list of values which define his own local services or external remote services.

Security Response Feature

The LuciGate Firewall is always invisible to the Outer World but may be given an IP address for interrogation by the Inner World. It will then respond to the ICMP Echo message in the normal way. If a Security Port is also defined and a Security ID string added to the card then a limited amount of status information may be extracted from the unit by the optional LuciGuard server program which can be run on a networked computer of the Inner World. LuciGuard will detect whether the LuciGate has been compromised whether by removal or through bypassing and will raise the alarm. LuciGuard will keep a full audit trail of significant events.