Menu
What's new
By:
Filters Better Search

Stand-alone firewallsuggestions

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

MT0Y

MT0Y

New Around Here
Hi Team, noob time again. I’m running AX88U and with people coming and going and flatmates riddled droid handsets weird and wonderful logs are being generated and attempts to change other devices on the network.
‘I’m thinking of buying a standalone firewall to shield the AX88U and stop all the malicious attacks on my Apple TV and data possibly being forwarded on.

Should I get a wireless firewall system for guests and my flatmate to connect to?

open to ideas and suggestions
cheers
noob
 
Do you have more specific examples of what is getting past the firewall in your router? Perhaps you simply need to tighten down some options.
 
I’ll get some info from it when it’s back up again and post. I appreciate your time in looking into it
 
Run Untangle behind a Cisco router using a Cisco layer 3 switch. Since the firewall works both directions the layer 3 switch will stop all the local routing traffic from being scanned inside the network and only real outbound traffic will be scanned. The wireless needs to be inside the layer 3 switch also. This is the best setup for a real firewall. Untangle is only $50 for home use. It is expensive for business use.

And don't compare ASUS to Untangle as they are in different worlds.
 
Sounds like you should only let those folks onto the guest network.

Since the AX88U support Merlin, I'd personally go a step further.

Flash to Merlin
Enable skynet
Setup YazFi to give you guest network separation.

IMO, you have everything you need within the package you already have, just a matter of configuring it.

Good luck!
 
I have been looking at pfsense, sophos xg and sophos utm. Their home editions are free and you get the same stuff enterprise gets. They also pretty much block everything by default especially sophos which is the most paranoid.

But if web filtering is a priority, untangled is a good option plus the most user friendly and the best reporting.
 
Strongly ditto dosborne and cptnoblivious!

I'd add the possibility that some of your guests are -perhaps- "innocently" abusing your hospitality: using your portal to enter the wild west of hacking/attacking/porn/etc. (and which may earn you a knock on the front door).

ISTM your LAN devices could be dangerously vulnerable.

Set some rules for your guests! Immediately respond to dosborne; immediately implement the suggestions of cptnoblivious.

..Possibly.. you would benefit from an IDS/IPS package which would likely run on your router+Merlin - but that is a steep learning curve and lots of work (as would be buying and learning more "stuff".)
 
You must log in or register to reply here.

Similar threads

YrbkMgr
AI Protection Alerts Coming From LAN Client
2
Replies
21
Views
3K
YrbkMgr
YrbkMgr
Phantomski
Solved [SOLUTION] Let’s Encrypt + DDNS/WAN Admin Domain Certificate Expired / not auto-renewed
Replies
0
Views
2K
Phantomski
Phantomski
S
I’m terrified and am so hoping someone can help me
2
Replies
30
Views
5K
Sky
Sky
P
Issue configuring reliable VPN bypass for Plex & WinTV Extend + WOL on RT-AX88U
Replies
0
Views
1K
PC Pilot
P
G
Setting up Merlin VPN and OpenVPN Server and Windows Client
Replies
4
Views
35K
dylane
D

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 839 (members: 15, guests: 824)
Top