TP-LINK router firewall Function Application Example

Enterprise users use vrouters to share the Internet. They often need to restrict the Internet access permissions of computers on the Intranet. For example, to restrict certain computers from accessing the Internet, some computers are allowed to send and receive emails but not browse webpages, restrict computers from accessing a site. Some computers have advanced permissions and are not restricted. Vro has a firewall function, which can be flexibly combined into a series of control rules to form a complete control policy, effectively manage the Internet access for employees, and facilitate you to further manage computers in the LAN. The "data packet filtering" function allows computers in the LAN to access certain websites on the Internet. The "MAC address filtering" function controls computer access to the Internet through MAC address filtering; domain Name filtering restricts the access of computers on the LAN to certain websites.

The following uses the TL-R490 router as an example to describe the setting method. There are eight computers in the LAN, and the computer 1IP: 192.168.1.2) cannot access the Internet. The computer 2IP: 192.168.1.3) can send and receive emails but cannot browse the webpage. The computer 3IP: 192.168.1.4) you cannot access this site 219.134.132.61), or 4IP: 192.168.1.5 on the computer. You cannot send or receive emails but can browse the webpage. Other computers are not limited. The following sets the permission to access the Internet through data packet filtering. Because no restrictions are imposed on other computers, the default Filtering Rule is set to allow access; if you do not allow other computers to access the Internet, you should set the default Filtering Rule to prohibit the pass (of course, your IP address filtering entries should be allowed ):

The purpose of the first entry above is to allow computers to interpret the IP address of a domain name through the DNS server so that the computer can be connected normally. Of course, this example does not support addition, because the default rule is allowed. This entry must be added if the default filtering rule is to prohibit passing.

In addition to the "packet filtering" settings described above, you can also use the "MAC address filtering" method to restrict certain computers from accessing the Internet.

Port service table: FTP--21, HTTP browser page) --- 80, SMTP send mail) --- 25, POP receive mail) ---- 110, DNS (Domain Name Service) -------- 53.

1. Create a super "hardware" Firewall Router
2. Router configuration before and after firewall Installation