redirect
Loading...
TEW-929DRU
2
Dashboard
Overview
System
Time / Date
Schedule
Dynamic DNS
Samba (USB)
WoL
Routes / ARP
System Log
Device Mode
Bark®
Network
LAN
WAN
IPv6
VLAN
Routing
Wireless
Wireless 2.4GHz
Wireless 5GHz
Guest Network
WPS
Captive Portal
Security
Firewall
VPN
ALG
RADIUS
UPnP / NAT-PMP
Multi-WAN / QoS
Multi-WAN
QoS
Management
Administration
Certificate Management
Access Management
Firmware / Configuration
Reboot
Tools
Diagnostics
Ping Watchdog
Save
Logout
New firmware is available!
Go to upgrade new firmware...
General Settings
Port Forward
Port Trigger
IP Filtering
MAC Filtering
URL Filtering
Traffic Rules
DoS Prevention
DMZ Host
One-to-One NAT
Firewall - Traffic Rules
Traffic rules define policies for packets traveling between different zones, for example to reject traffic between certain hosts or to open WAN ports on the router.
Traffic Rules
Traffic Rules
Name
Match
Action
Schedule
Enable
Sort
Drop-WtoL-Ping
IPv4-icmp with type
echo-request
From
any host
in
WAN1+WAN2
To IP
192.168.10.1
on
this device
Discard input
No Schedule Entry
Allow-IGMP
IPv4-igmp
From
any host
in
WAN1+WAN2
To
any router IP
on
this device
Accept input
No Schedule Entry
Allow-DNSv6
IPv6-traffic
From
any host
in
WAN1+WAN2
with source port
53
To
any router IP
on
this device
Accept input
No Schedule Entry
Allow-DHCPv6
IPv6-udp
From IP range
fe80::/10
in
WAN1+WAN2
with source port
547
To IP range
fe80::/10
at port
546
on
this device
Accept input
No Schedule Entry
Allow-MLD
IPv6-icmp with types
130/0
,
131/0
,
132/0
,
143/0
From IP range
fe80::/10
in
WAN1+WAN2
To
any router IP
on
this device
Accept input
No Schedule Entry
Allow-ICMPv6-Input
IPv6-icmp with types
echo-request
,
echo-reply
,
destination-unreachable
,
packet-too-big
,
time-exceeded
,
bad-header
,
unknown-header-type
,
router-solicitation
,
neighbour-solicitation
,
router-advertisement
,
neighbour-advertisement
From
any host
in
WAN1+WAN2
To
any router IP
on
this device
Accept input
and limit to
1000
pkts.
per
second
No Schedule Entry
Allow-ICMPv6-Forward
IPv6-icmp with types
echo-request
,
echo-reply
,
destination-unreachable
,
packet-too-big
,
time-exceeded
,
bad-header
,
unknown-header-type
From
any host
in
WAN1+WAN2
To
any host
in
any zone
Accept forward
and limit to
1000
pkts.
per
second
No Schedule Entry
Open ports on router
Open ports on router
Name
Protocol
TCP+UDP
TCP
UDP
Other...
External port
Schedule
Disable time schedule
Always
New forward rule
New forward rule
Name
Source interface
LAN
WAN1+WAN2
Destination interface
LAN
WAN1+WAN2
Schedule
Disable time schedule
Always
Source NAT
Source NAT
Source NAT is a specific form of masquerading which allows fine grained control over the source IP used for outgoing traffic, for example to map multiple WAN addresses to internal subnets.
Name
Match
Action
Schedule
Enable
Sort
< < Table is empty > >
Add New Source NAT Rule
Add New Source NAT Rule
Name
Source zone
lan
wan
Destination zone
lan
wan
To source IP
-- Please choose --
192.168.10.1 (br-lan)
-- custom --
To source port
