editor
471
edits
Router - TG582N - Firewall and Port Forwarding: Difference between revisions
Router - TG582N - Firewall and Port Forwarding (view source)
Revision as of 18:11, 17 February 2015
, 17 February 2015Grouping and tidying
m (Grouping and tidying) |
m (Grouping and tidying) |
||
|
Be default the router has a feature called 'Web Browsing Interception' set to Automatic. This is a proxy-like feature, and should be disabled. The setting can be found and easily changed on the web interface. From the Left Menu - Technicolor Gateway - Configuration - Configure. Set Web Browsing Interception to Disabled.
= HTTP/HTTPS/Telnet servers on the TG582n =
There are servers which are often configured to run on the TG582n. These can cause issues when trying to port forward using their
= HTTP/HTTPS Port forward =▼
port numbers. There can also be security issues, especially if you have disabled the firewall.
If you are wanting to port forward HTTP or HTTPS on the technicolor, then as it also has a web server you may have a conflicting error when trying to add a HTTP/S port forward using gaming application.▼
▲If you are wanting to port forward HTTP or HTTPS on the
You will need to stop the Technicolor listening on port 80 & 443 itself on the WAN. Use the following commands via telnet,
== Restrict access to HTTP interface by IP ==
You may prefer to just restrict access to the router by IP - note this applies to the LAN and WAN, so you'll need to add your LAN addresses too
saveall
== Restrict access to TELNET interface by IP ==
'''Add your LAN block first, as otherwise you'll be locked out!'''
To later delete the restriction:
service system ipdelete name=HTTP ip=90.155.42.0/24
saveall▼
== WAN Access Restrictions (HTTP/TELNET to the Router) ==▼
Here are notes on how to restrict access to the routers web and telnet interfaces, by either disabling access from the WAN (Internet) altogether, or by restricting access by IP address. These settings are made live as soon as they are entered, so be careful not to lock yourself out!▼
===Disable WAN access to HTTP/Telnet===▼
This will disable WAN access to the routers administrator services▼
To disable WAN access to HTTP, HTTPS and telnet:▼
service system ifdelete name=HTTP group=wan▼
service system ifdelete name=HTTPs group=wan▼
service system ifdelete name=TELNET group=wan▼
To view the settings:▼
service system list name=HTTP expand=enabled▼
service system list name=TELNET expand=enabled▼
It should say: ▼
Interface Group Access List lan ▼
Save the settings:▼
saveall▼
To later revert the setting, add back wan access by:▼
service system ifadd name=HTTP group=wan▼
saveall
This isn't well tested - please let us know if anything breaks when you do this!
▲= WAN Access Restrictions (HTTP/TELNET to the Router)=
▲Here are notes on how to restrict access to the routers web and telnet interfaces, by either disabling access from the WAN (Internet) altogether, or by restricting access by IP address. These settings are made live as soon as they are entered, so be careful not to lock yourself out!
▲=Disable WAN access to HTTP/Telnet=
▲This will disable WAN access to the routers administrator services
▲To disable WAN access to HTTP, HTTPS and telnet:
▲ service system ifdelete name=HTTP group=wan
▲ service system ifdelete name=HTTPs group=wan
▲ service system ifdelete name=TELNET group=wan
▲To view the settings:
▲ service system list name=HTTP expand=enabled
▲ service system list name=TELNET expand=enabled
▲It should say:
▲ Interface Group Access List lan
▲Save the settings:
▲ saveall
▲To later revert the setting, add back wan access by:
▲ service system ifadd name=HTTP group=wan
▲ saveall
= Problems connecting to PPTP Servers =
| |||