Configuration Guide How to Block Unwanted WAN IP Address from Your Server
Background:
This post provides a configuration guide to block unwanted public IP addresses from accessing your WAN or services. In another use case, you might also use it to limit access from the Internet to your port forward services.
This Article Applies to:
All routers with ACL features. It may also be helpful for Switch ACL schemes.
Configuration Steps:
1. Select your Organization and choose your Site.
2. Go to Settings > Network Security > ACL
3. Create a new rule in Gateway ACL. In the rule, you should set the following parameters:
Direction = WAN IN.
Policy = Deny
Protocols = All or your desired protocols.
Source = IP_Group (You can create a new IP group on this page. Or pick your created IP groups that contain unwanted addresses or any IP group)
Destination = To block access to the router, please set it to the Gateway Management Page. Or you can specify a new group based on your expectations.
Other parameters, you may enable or disable based on your needs.
4. Click Create and it will start to work.
Verification:
1. In this test, we connect the ER605(192.168.10.1/24) into a router with CIDR 192.168.2.0/24 to simulate the public Internet. The computer is located at 192.168.2.192 and 192.168.2.199 to verify this.
2. Access the ER605 WAN(192.168.2.192). We can access ER605 WAN from 192.168.2.136. While based on the ACL, we can NOT access ER605 from 192.168.2.199.
Note:
The Destination is not limited to and can be a self-hosted server in LAN that you have configured port forwarding.
You can implement something similar to the old guide we have: How to limit specific IP to access to internal server by TP-LINK SMB router
Update Log:
Aug 30th:
Update the title.
Add a piece of note.
Jan 16th, 2024:
Update the format.
Recommended Threads:
Configuration Guide How to Configure Web Filtering to Block Sites
Get the Latest Firmware Releases for Omada Routers Here - Subscribe for Updates
Get the Latest Omada SDN Controller Releases Here - Subscribe for Updates
Feedback:
- If you have trouble with ACL, please specify your config with screenshots in the New Thread. Additionally, please provide reproduction steps of your issue.
- If there is anything unclear in this solution post, please feel free to comment below.
- If this was helpful, welcome to give us Kudos by clicking the upward triangle below.
- If there is anything unclear in this solution post, please feel free to comment below.
Thank you in advance for your valuable feedback!
------------------------------------------------------------------------------------------------
Have other off-topic issues to report?
Welcome to > Start a New Thread < and elaborate on the issue for assistance.