NAT Detector
From Wiki of WFilter NG Firewall
1 NAT Detector
NAT Detector module can detect NAT sharing services in local networks.
- WFilter analysises internet usage records to check whether NAT sharing services are running.
- You need to enable recording for client devices to be checked.
2 Settings
- Basic Settings
- NAT Detector: whether or not to enable NAT detector.
- Block Routed TTL: block packets being routed based on TTL checking.
- Interval: Do analysis based on internet usage in configured time peroid.
- Message: display a message when clients are blocked.(Users will see this message when a http webpage is blocked)
- IP Exception: IP address or IP ranges won't be checked.
- Action
- Block internet access for N minutes when NAT sharing is detected.
- 自动加入虚拟组N分钟。检测到共享服务时自动加入虚拟组。您可以通过其他模块对虚拟组配置更多的管控策略。
3 检测记录日志
点击“检测记录日志”,可以查看共享检测的历史,包括IP地址、MAC地址、惩罚措施等内容,点击“备注”中的查询图标可以对该记录提供更多的分析数据。