I have an Asus RT-AC68U router, but I assume most of the recent models carry the same interface. Here is my issue.
I started both the windows samba and ftp features for an attached USB to this router. The issue is that the ftp server the router started is being made public to wan side and I could not find a feature to disable it.
As a temporary measure I port forwarded 192.168.1.1:20 & 21 to forward to ip 127.0.0.1:20 & 21 for tcp traffic. That seemed to work but I don't know if there is a better solution. Or if this is an appropriate solution to hide the ftp server.
Is there a tool to check if I have any other open ports to the wan side? I would like to close my entire lan network off from the outside.
If I need to get into the lan side of my network, I do have a vpn server running on this router that I perfer to use.
Question 2: I also have a 4TB WD MyCloud that I tried to close off from the outside entirely. I went to firewall -> network services filter and blacklisted all requests from the source lan ip 192.168.1.100, putting a wildcard of *.*.*.* in the destination ip, trying to give the mycloud zero outside access. I disable this rule every couple months just to keep the firmware updated.
Are my security measures correct? They seem to work, but I am a rookie when it comes to networking.
I started both the windows samba and ftp features for an attached USB to this router. The issue is that the ftp server the router started is being made public to wan side and I could not find a feature to disable it.
As a temporary measure I port forwarded 192.168.1.1:20 & 21 to forward to ip 127.0.0.1:20 & 21 for tcp traffic. That seemed to work but I don't know if there is a better solution. Or if this is an appropriate solution to hide the ftp server.
Is there a tool to check if I have any other open ports to the wan side? I would like to close my entire lan network off from the outside.
If I need to get into the lan side of my network, I do have a vpn server running on this router that I perfer to use.
Question 2: I also have a 4TB WD MyCloud that I tried to close off from the outside entirely. I went to firewall -> network services filter and blacklisted all requests from the source lan ip 192.168.1.100, putting a wildcard of *.*.*.* in the destination ip, trying to give the mycloud zero outside access. I disable this rule every couple months just to keep the firmware updated.
Are my security measures correct? They seem to work, but I am a rookie when it comes to networking.
Last edited: