Allow and Deny Firewall Rules on TD-W8980
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Allow and Deny Firewall Rules on TD-W8980
Model : TD-W8980
Hardware Version : V1
Firmware Version : 0.6.0 1.7 v000e.0 Build 140919 Rel.52176n
ISP : N/A
Hi
I'm trying to setup some firewall rules on the W8980 to only allow incoming communications from a specific external IP on a specific port. I'm trying to prevent SIPvicious attacks.
On other devices I would setup 2 rules...
1. Specific WAN Host Port 5060 Inbound Allow
2. All WAN Hosts Port 5060 Inbound Deny
Incoming traffic from my VOIP provider would match the first rule and be passed through. Incoming traffic from any other external IP would hit the 2nd rule and be denied. The Firewall on this router is set to ' Allow the packets not specified by any filtering rules to pass through the device'. I want to keep it this way too.
However, the interface on the W8980 isn't so easy to manipulate this way. I can setup the first rule fine by defining a service port in the WAN host. But when it comes to the second rule the only way I can think of this working is by creating a 'WAN Host' defining a full range of all Public IP addresses against port 5060 so I can limit the rule to a specific service port! The firewall rules themselves do not give you the ability to define a Service Port.
Sorry, but I'm not sure why the below images are so small.
Am I going about this the wrong way?
Thanks
Kev
Hardware Version : V1
Firmware Version : 0.6.0 1.7 v000e.0 Build 140919 Rel.52176n
ISP : N/A
Hi
I'm trying to setup some firewall rules on the W8980 to only allow incoming communications from a specific external IP on a specific port. I'm trying to prevent SIPvicious attacks.
On other devices I would setup 2 rules...
1. Specific WAN Host Port 5060 Inbound Allow
2. All WAN Hosts Port 5060 Inbound Deny
Incoming traffic from my VOIP provider would match the first rule and be passed through. Incoming traffic from any other external IP would hit the 2nd rule and be denied. The Firewall on this router is set to ' Allow the packets not specified by any filtering rules to pass through the device'. I want to keep it this way too.
However, the interface on the W8980 isn't so easy to manipulate this way. I can setup the first rule fine by defining a service port in the WAN host. But when it comes to the second rule the only way I can think of this working is by creating a 'WAN Host' defining a full range of all Public IP addresses against port 5060 so I can limit the rule to a specific service port! The firewall rules themselves do not give you the ability to define a Service Port.
Sorry, but I'm not sure why the below images are so small.
Am I going about this the wrong way?
Thanks
Kev
