Menu
What's new
By:
Filters Better Search

[RT-AC88U] NAT Passthrough Panel

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

AntonK

AntonK

Very Senior Member
Hi,

Is it best router security practice to 'disable' every one of these settings if none of them are being used?

Thanks,
Anton
 

Attachments

  • Clipboard01.jpg
    Clipboard01.jpg
    38 KB · Views: 554
I wouldn't say it's best practice, rather maybe configuration streamlining. Really, these are just additional features of the NAT implementation. What you allow and don't allow via NAT can be controlled in other ways.

Disabling each one may reduce the kernel footprint a little, assuming it prevents the relevant modules from loading. It's always possible any module loaded could increase the chance of a local vulnerability as well, in a multiuser environment.

If you see a performance improvement by disabling them and you definitely don't need them then I'd say go for it. For the most part though, having to re-enable these options when you do need them is going to be a pita.



Sent from my MI 5 using Tapatalk
 
In Asus's stock firmware case, disabling also means they add a series of firewall rules to explicitely drop traffic on the associated ports, which can lead to hard-to-track issues down the road (for instance, blocking IPSEC will prevent some VoIP services from working properly).
 
RMerlin said:
In Asus's stock firmware case, disabling also means they add a series of firewall rules to explicitely drop traffic on the associated ports, which can lead to hard-to-track issues down the road (for instance, blocking IPSEC will prevent some VoIP services from working properly).
Click to expand...

I experienced exactly this and it confused the **** out of me for ages!!


Sent from my iPhone using Tapatalk
 
Thanks for the info!
 
You must log in or register to reply here.

Similar threads

S
Double NAT detected with BGW320 and RT-AX86U Pro
Replies
4
Views
242
ColinTaylor
C
choleric
IPv6 config on Asus RT-AX86U with Google Fiber
2
Replies
36
Views
1K
choleric
choleric
F
Got some routers, need help.
Replies
4
Views
274
F0zeNN
F
D
ASUS RT-AC88U
Replies
3
Views
721
DELBOYDOG
D
J
Choose best wired ai mesh nodes for rt-ac88u
Replies
4
Views
713
Daddio
D
Similar threads
Thread starter Title Forum Replies Date
J Choose best wired ai mesh nodes for rt-ac88u ASUS AC Routers & Adapters (Wi-Fi 5) 4
H Asus RT- AC88U strange log ASUS AC Routers & Adapters (Wi-Fi 5) 9
A RT-AC88U WAN speed hitting max DL of around 500Mbps from speedtest? ASUS AC Routers & Adapters (Wi-Fi 5) 9
kaanaslan DSL-AC88U asuscomm DDNS Lets Encrypt Problem ASUS AC Routers & Adapters (Wi-Fi 5) 0
kaanaslan DSL-AC88U Port Forwarding doesn't seem to be working when not in the local network ASUS AC Routers & Adapters (Wi-Fi 5) 5
R Asus RT-AC88U, USB attached stick slow read just normal write speed ASUS AC Routers & Adapters (Wi-Fi 5) 5
Y RT-AC88U wifi error ASUS AC Routers & Adapters (Wi-Fi 5) 6
K OpenVPN on Asus Router (DSL-AC88U) - No internet for client ASUS AC Routers & Adapters (Wi-Fi 5) 2
M AC88U CPU Load Maxed Out ASUS AC Routers & Adapters (Wi-Fi 5) 3
M AC88u and QOS ASUS AC Routers & Adapters (Wi-Fi 5) 4

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 969 (members: 27, guests: 942)
Top