Disabling LAN ports

Portalnet

Occasional Visitor
Hello. I would like to disable unused LAN ports. I have a NAS connected to one LAN port (IP address assigned by DHCP via MAC). I would like to turn off the other three LAN ports so that nobody can connect to them and use the Internet (even after entering their own IP addresses)
Can it be done on original ASUS or Merlin?
 

dosborne

Very Senior Member
If someone has physical access, what would stop them from unplugging your NAS and using that port?
 

Tech Junky

Very Senior Member
This is silly thinking consumer gear can do simple things like turning off a port. These devices are as dumb as they can get for people that don't know networking. If you want control you need to go at least smb or diy.
 

Portalnet

Occasional Visitor
I was more concerned with assigning DHCP to one socket, and turning off the other. it's always some kind of security.
But I demand too much from consumer cunning.
 

Tech Junky

Very Senior Member
Disable DHCP and use a static subnet that's not common to guess from visitors. The easiest would be using something in the 172.16.x.x range.
 

ColinTaylor

Part of the Furniture
This is the consumer part.
You can make it persistent with Merlin's firmware.

EDIT: You could probably do it in stock firmware as well by setting one nvram variable, but I haven't tested that.
 

ColinTaylor

Part of the Furniture
@ColinTaylor

A thought came to mind to enable at boot by putting it in a rc.local or setup a cron to implement it periodically.

Asuswrt doesn't use rc.local but Merlin's firmware has something similar that's why I said it could be done with Merlin. It's also possible in stock firmware using a USB drive. Changing one nvram variable would be even easier (if that works).
 

Tech Junky

Very Senior Member
@ColinTaylor

Then maybe that should be suggested to @RMerlin to add the feature in a KISS methodology that users can figure out how to use? I don't use Asus nor am I interested enough to dive into the inner workings of them. I do know they use Linux like everything else on the internet and there is where my experience comes into play with tweaking things. Of course things don't translate 100% because of Asus and other OEMs being closed sourced and renaming crap for their benefit but, being cousins there's usually a way to make them talk to each other in the same language. You picked up on what I was saying so, there's that.
 

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top