Firewall WAN settings [router mode]
If the AP is in router mode, the basic firewall settings let you manage port scan protection
and denial of service (DoS) protection, specify whether the AP can respond to a ping
from the Internet (WAN) port, set up a DMZ server, and manage IGMP proxying, NAT
filtering, and the application-level gateway (ALG) for the Session Initiation Protocol (SIP).
For information about the MTU size, which is another basic firewall setting, see Change
the MTU size [router mode] on page 129.
Note: The information in this section and subsections does not apply if the AP is in
access point mode.
Manage port scan protection and denial of service
protection [router mode]
Port scan protection and denial of service (DoS) protection can protect your LAN against
attacks such as Syn flood, Smurf Attack, Ping of Death, and many others. By default,
DoS protection is enabled and a port scan is rejected.
You can also enable the AP to respond to a ping to its Internet (WAN) port. This feature
allows your AP to be discovered. Enable this feature only as a diagnostic tool or if a
specific reason exists.
To change the default WAN security settings:
1. Launch a web browser from a computer or mobile device that is connected to a WiFi
network or LAN port on the AP.
2. Enter http://www.routerlogin.net in the address field.
A login window displays.
If your browser displays a security warning, dismiss the warning. For more information,
see Find the IP address of the AP when you cannot use routerlogin.net on page 32.
3. Enter the AP local device password.
The local device password is the one that you specified. The local device password
is case-sensitive.
The BASIC Home page displays.
4. Select ADVANCED > Setup > WAN Setup.
The WAN Setup page displays.
5. To enable a port scan and disable DoS protection, select the Disable Port Scan and
DoS Protection check box.
User Manual
82
Security, Firewall, and Access
Rules
WiFi 6 AX1800 Dual Band Wireless Access Point WAX204