Link to home
Create AccountLog in
Routers

Routers

--

Questions

--

Followers

Top Experts

Avatar of BullfrogSoftware
BullfrogSoftware🇺🇸

Linksys LRT214 Firewall
We are deploying these units in small offices, and we have noticed in the configuration that the units have:

Port Forwarding, like classic home routers
Firewall Access Rules, like Sonicwall and other advanced security routers

The access rules do not seem to make any difference whereas the port forwarding rules allow the correct traffic.  Anyone have experience with these?  Are these 'either or', do they work in conjunction with one another?  For now, we are simply ignoring the Firewall access rules, and the routers are functioning as we need them to.

Zero AI Policy

We believe in human intelligence. Our moderation policy strictly prohibits the use of LLM content in our Q&A threads.

Avatar of bbaobbao🇦🇺

> The access rules do not seem to make any difference whereas the port forwarding rules allow the correct traffic.

could you please be specific or simply post a screenshot of the configuration to clarify the issue?
Avatar of David AkinsanyaDavid Akinsanya🇺🇸

Port forwarding = Static NAT

Implementation depends on goals.

You can use both, or use none, or just use one. It all depends on your goal. They do not perform the same function though.
Port forwarding is like traffic warden, while the firewall is like a bouncer.
Example.
Traffic to public IP 172.32.16.100 on port 80, should be directed to the web server's local IP address eg 10.10.10.1
That is port forwarding. You are forwarding traffic to a device based on triggered ports.
Traffic to public IP 172.32.16.100 on port 3389, may be directed to the SQL server's local IP address eg 10.10.10.2 to remote desktop into it.
I may then filter which addresses I want to grant access to for the RDP. I can cay only allow traffic from 198.10.10.0/22 network going to 172.32.16.100 on port 3389 to be forwarded to the SQL's local address 10.10.10.2.
This way, I will apply bot static NAT rule and Firewall rule (or ACL) to accomplish that task
Avatar of BullfrogSoftwareBullfrogSoftware🇺🇸

ASKER

Ok, here is where I am getting confused.  Even if we have a single firewall rule

WAN -> LAN Block ALL

Then set port 80 forward to 10.x.x.3

The port 80 traffic is allowed.  Does the port forward supercede the firewall on this unit?
Reward 1Reward 2Reward 3Reward 4Reward 5Reward 6

EARN REWARDS FOR ASKING, ANSWERING, AND MORE.

Earn free swag for participating on the platform.

SOLUTION
Avatar of David AkinsanyaDavid Akinsanya🇺🇸

Link to home
membership
Log in or create a free account to see answer.
Signing up is free and takes 30 seconds. No credit card required.
Create Account
ASKER CERTIFIED SOLUTION
Avatar of bbaobbao🇦🇺

Link to home
membership
Log in or create a free account to see answer.
Signing up is free and takes 30 seconds. No credit card required.
Create Account
Avatar of gheistgheist🇧🇪

iptables is easier to manage:
http://wiki.openwrt.org/toh/linksys/wrt610n
Routers

Routers

--

Questions

--

Followers

Top Experts

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.