Testing Firewall

[awuf]

I have an Asus RT-AC88U router and want to test the effectiveness of the firewall.

A computer running nmap for windows is connected to the WAN port of the router.

How do you configure the network connection between the computer and router so traffic can flow between them.

The computer IP address is 192.168.1.2 with a subnet mask of 255.255.255.0 and default gateway of 192.168.1.1.

The router IP address is 192.168.1.1 with a subnet mask of 255.255.255.0 and a default gateway of 0.0.0.0.

Pinging the router returns error code 5.

What's wrong ?

 

[drabisan]

You're doing it wrong cause you're overlapping subnets between LAN and WAN.
Leave the LAN as it is.
Set a static ip on router WAN interface. Let's say 2.2.2.2, subnet 255.255.255.252, default gateway 2.2.2.1.
Set static ip on the windows machine with nmap. Following the example: 2.2.2.1, netmask 255.255.255.252. Default gateway doesn't matter in this case. And connect it on the WAN port of your router.
From router you will be able to ping 2.2.2.1. From LAN clients you'll be able to ping 2.2.2.2.
And now, from the Windows machine, you can run whatever nmap you want on 2.2.2.1.

That's all folks
I'm not aware of any newly added feature that will make Asus not to run NAT and firewall on it sees there's no internet connectivity. So you should be able to run your test.

 

[awuf]

Thanks drabisan.

It's working.