I am new to ASUS family and trying to harden the router by adjusting security settings.
- I have no idea regarding UPnP service. I do have an Xbox One console which is not yet connected to the router.
- I have explicitly enabled remote access from WAN and restricted it to specific local IP addresses. I am quite surprised that the router doesn't let me restrict WAN access by MAC address (of course that can be spoofed).
- I have enabled auto firmware update option in addition to scheduled reboots every day during nighttime.