Business Community > Routers > How to Block WAN IP Address from Your Server
< Routers

Configuration Guide How to Block WAN IP Address from Your Server

Configuration Guide How to Block WAN IP Address from Your Server

Configuration GuideHow to Block WAN IP Address from Your Server
How to Block WAN IP Address from Your Server
2023-12-06 01:45:44 - last edited 2024-01-16 07:14:38
Tags: #Official #Gateway ACL

Background:

 

This post provides a configuration guide to block unwanted public IP addresses from accessing your WAN or services.  In another use case, you might also use it to limit access from the Internet to your port forward services.

 

This Article Applies to:

 

All routers with ACL features. It may also be helpful for Switch ACL schemes.

 

Configuration Steps:

 

1. Select your Organization and choose your Site.

2. Go to Settings > Network Security > ACL

3. Create a new rule in Gateway ACL. In the rule, you should set the following parameters:

 

Direction = WAN IN.

Policy = Deny

Protocols = All or your desired protocols.

Source = IP_Group (You can create a new IP group on this page. Or pick your created IP groups that contain unwanted addresses or any IP group)

Destination = To block access to the router, please set it to the Gateway Management Page. Or you can specify a new group based on your expectations.

Other parameters, you may enable or disable based on your needs.

 

4. Click Create and it will start to work.

 

 

Verification:

 

1. In this test, we connect the ER605(192.168.10.1/24) into a router with CIDR 192.168.2.0/24 to simulate the public Internet.  The computer is located at 192.168.2.192 and 192.168.2.199 to verify this.

2. Access the ER605 WAN(192.168.2.192). We can access ER605 WAN from 192.168.2.136. While based on the ACL, we can NOT access ER605 from 192.168.2.199.

 

 

Update Log:

 

Jan 16th, 2024:

Update the format.

 

Recommended Threads:

 

Configuration Guide How to Configure Web Filtering to Block Sites

Get the Latest Firmware Releases for Omada Routers Here - Subscribe for Updates

Get the Latest Omada SDN Controller Releases Here - Subscribe for Updates

 

Feedback:

 

  • If you have trouble with ACL, please specify your config with screenshots in the New Thread. Additionally, please provide reproduction steps of your issue.
  • If there is anything unclear in this solution post, please feel free to comment below.

 

  • If this was helpful, welcome to give us Kudos by clicking the upward triangle below.
  • If there is anything unclear in this solution post, please feel free to comment below.

 

Thank you in advance for your valuable feedback!

 

------------------------------------------------------------------------------------------------

Have other off-topic issues to report? 

Welcome to > Start a New Thread < and elaborate on the issue for assistance.

 

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Beta firmware got some NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting Manual ★ ☚ (Disclaimer: Short links are used above solely for guidance to TP-Link subdomains and are safe and tracker-free. Exercise caution with short links from non-official members on forums. We are not liable for external content or damage from non-official members' link use.)
  1      
 
  1      
 
#1
Options

Information

Helpful: 1

Views: 435

Replies: 0

Tags

Official Gateway ACL
Related Articles
How to allow access from a network to a IP-adress (server)
140 1
How to access WAN from LAN IP
1737 0
How to block inbound connection from a specific IP
1100 0
VR400 how to block log in using public IP address:80
948 0
How to give IP from Wan to my LAN devices
156 0
Archer C6 - how to block internet access for an IP address range?
2230 0
About Us
Press
Copyright © TP-LINK CORPORATION PTE. LTD. All rights reserved.