I'm confused here. I thought the ER605 was an edge-router. I just replace my Ubiquiti ER-X with this and it has <10% the capability. I got it adopted, reset my LAN to my preferred 10.50.1.1/24, coded all my fixed IPs, but "none" of the things I'd expect from a Router beyond DHCP seem to exist. Port-Forwarding (can't find it), Firewall (straight rejected). And when I test my port security from GRC's Shields Up the vast majority of ports are listening and just rejecting (aka, "closed" instead of "stealth"). I know closed is still safe, but stealth is preferred. I have a few home servers and can't even figure out how to open a port to it when desired.

After many hours playing, I'm planning to return this if I can't get it to be a router today. ... but I don't want to.

EDIT:

1) Port-Forwarding: I got the routing to work via the NAT screen, but now I'm limited by the list of source IPs. I need to put ~30 but cap'd at ~5.

2) Closed-Ports: by limiting DHCP to 100-250, and setting up a DMZ to x.x.x.254 I was able to 'stealth' a lot of ports, but things like FTP / SSH / TELNET / UPnP are still there, all be it 'closed'. These are the exact ports I would want to be fully stealth and not reply at all.