Firewall Settings

As detailed in the Default Settings article, the image comes with the firewall enabled by default. This article describes how to disable and re-enable the firewall. This article does not go into detail on how to add additional rules to the firewall, if you wish to do this, we recommend editing the /etc/firewall file directly (either via ssh or copying it off the device and then back on) and using the existing rules as a template.

Accessing the Firewall Page

  1. Using a web-browser, enter in the appropriate address based on  how you are connected to the AP (192.681.1.1 for the "Internet" port,  10.0.100.2 otherwise). If the web page does not come up, make sure the  AP is powered on (both plugged in and power switch turned on), and that  your computer is set to an approriate IP (192.168.1.* for the Internet  port, DHCP otherwise).
  2. Log in using the default username/password of root/root
  3. From the AP home page, hover over the Network menu and select the Firewall entry to navigate to the Firewall page.

Disabling the Firewall

To disable the firewall:

  1. Set the default Forward rule to accept
  2. Set the Forward rule for the teams zone to accept
  3. Click Save & Apply

Re-enabling the Firewall

To re-enable the firewall

  1. Set the default Forward rule to reject
  2. Set the teams zone forward rule to reject
  3. Click Save & Apply

Warning: Setting other entries to reject may prevent you from accessing the AP web page and/or SSH. If this happens, you may be able to access the web page via the alternate address (192.168.1.1 ont he Internet port vs 10.0.100.2 on the other ports.) If you are still unable to access the AP, you may need to perform the recovery procedure described in the Recovery Procedure article.