Business Community > Gateways > ER605 whitelisting so only certain external IP addresses can get thru port forwarding
< Gateways

ER605 whitelisting so only certain external IP addresses can get thru port forwarding

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

ER605 whitelisting so only certain external IP addresses can get thru port forwarding

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
ER605 whitelisting so only certain external IP addresses can get thru port forwarding
ER605 whitelisting so only certain external IP addresses can get thru port forwarding
Sunday - last edited 18 hours ago
Tags: #Firewall #whitelisting
Model: ER605 (TL-R605)  
Hardware Version: V2
Firmware Version: 2.2.6

I am trying to set things up so that traffic (UDP audio streams) can pass through specific ports on a ER605 (in standalone mode, we do not use Omada Controllers here), via port-forwarding, but only if they're coming from a specific static IP address of a WAN port on another ER605 at a different location.   Basically, I'm trying to set up a whitelist.

 

This seems like it shouldn't be that hard, yet I cannot figure out how to do it?  I tried setting up rules in Firewall > Access Control, but there's no way to have a rule that says "block everything EXCEPT..."  I don't know if the ER605 applies those Access Control rules sequentially but my experiments with them seem to indicate it does not in any reliable way.  Sometimes it blocks it, sometimes it doesn't.

 

What I am I missing here?

  0      
 
  0      
 
#1
Options
1 Accepted Solution
Re:ER605 whitelisting so only certain external IP addresses can get thru port forwarding-Solution
Sunday - last edited 18 hours ago

  @aaronread1 

 

Its from the omada controller

 

The option to restrict port forward IPs does not exist in standalone mode

 

Recommended Solution
  0  
  0  
#4
Options
4 Reply
Re:ER605 whitelisting so only certain external IP addresses can get thru port forwarding
Sunday

  @aaronread1 

 

You set it up on the port forward itself.  Port forwarding is higher priority than ACLs so it always takes effect regardless of ACL rules.

 

  0  
  0  
#2
Options
Re:ER605 whitelisting so only certain external IP addresses can get thru port forwarding
Sunday

  @GRL that is not a screencap from an ER605.  I don't know what router you're talking about, but it's not an ER605 v2.0, so it's not very helpful.

  0  
  0  
#3
Options
Re:ER605 whitelisting so only certain external IP addresses can get thru port forwarding-Solution
Sunday - last edited 18 hours ago

  @aaronread1 

 

Its from the omada controller

 

The option to restrict port forward IPs does not exist in standalone mode

 

Recommended Solution
  0  
  0  
#4
Options
Re:ER605 whitelisting so only certain external IP addresses can get thru port forwarding
Sunday

  @GRL and if you'd read my post, I specifically said "we don't use Omada controllers".   So basically this router needs to be replaced with something other than a TP Link.  Very well.

  0  
  0  
#5
Options

Information

Helpful: 0

Views: 70

Replies: 4

Tags

Firewall
whitelisting
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.