Line 138: |
Line 138: |
| <td>string; default: <b>none</b></td> | | <td>string; default: <b>none</b></td> |
| <td>Configured SMTP server's user's email address.</td> | | <td>Configured SMTP server's user's email address.</td> |
| + | </tr> |
| + | </table> |
| + | |
| + | ==Access Control== |
| + | ===General=== |
| + | |
| + | The <b>Access Control</b> page is used to manage remote and local access to the router. |
| + | |
| + | <b>Important</b>: turning on remote access leaves the router vulnerable to external attackers. Make sure you use a strong password. |
| + | <br><br> |
| + | <b>SSH</b> |
| + | ---- |
| + | [[File:Networking_rutx_manual_administration_access_control_general_ssh_v1.png]] |
| + | |
| + | <table class="nd-mantable"> |
| + | <tr> |
| + | <th>Field</th> |
| + | <th>Value</th> |
| + | <th>Description</th> |
| + | </tr> |
| + | <tr> |
| + | <td>Enable SSH access</td> |
| + | <td>off | on; default: <b>on</b></td> |
| + | <td>Turns SSH access from the local network (LAN) on or off.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Remote SSH access</td> |
| + | <td>off | on; default: <b>off</b></td> |
| + | <td>Turns SSH access from remote networks (WAN) on or off.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Port</td> |
| + | <td>integer [0..65535]; default: <b>22</b></td> |
| + | <td>Selects which port to use for SSH access.</td> |
| + | </tr> |
| + | </table> |
| + | <br> |
| + | <b>WebUI</b> |
| + | ---- |
| + | [[File:Networking_rutx_manual_administration_access_control_general_webui_v2.png|border|class=tlt-border]] |
| + | |
| + | <table class="nd-mantable"> |
| + | <tr> |
| + | <th>Field</th> |
| + | <th>Value</th> |
| + | <th>Description</th> |
| + | </tr> |
| + | <tr> |
| + | <td>Enable HTTP access</td> |
| + | <td>off | on; default: <b>on</b></td> |
| + | <td>Turns HTTP access from the local network (LAN) to the router's WebUI on or off.</td> |
| + | </tr><tr><td>Enable HTTPS access |
| + | </td><td>off | on; default: <b>on</b></td><td>Turns HTTPS access from the local network (LAN) to the router's WebUI on or off.</td></tr><tr> |
| + | <td>Redirect to HTTPS</td> |
| + | <td>off | on; default: <b>off</b></td> |
| + | <td>Redirects connection attempts from HTTP to HTTPS.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Enable remote HTTP access</td> |
| + | <td>off | on; default: <b>off</b></td> |
| + | <td>Turns HTTP access from remote networks (WAN) to the router's WebUI on or off.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Port</td> |
| + | <td>integer [0..65535]; default: <b>80</b></td> |
| + | <td>Selects which port to use for HTTP access.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Enable remote HTTPS access</td> |
| + | <td>off | on; default: <b>off</b></td> |
| + | <td>Turns HTTPS access from remote networks (WAN) to the router's WebUI on or off.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Port</td> |
| + | <td>integer [0..65535]; default: <b>443</b></td> |
| + | <td>Selects which port to use for HTTPS access.</td> |
| + | </tr> |
| + | </table> |
| + | <br> |
| + | <b>CLI</b> |
| + | ---- |
| + | [[File:Networking_rutx_manual_administration_access_control_general_cli_v1.png]] |
| + | |
| + | <table class="nd-mantable"> |
| + | <tr> |
| + | <th>Field</th> |
| + | <th>Value</th> |
| + | <th>Description</th> |
| + | </tr> |
| + | <tr> |
| + | <td>Enable CLI</td> |
| + | <td>off | on; default: <b>on</b></td> |
| + | <td>Turns CLI access from the local network (LAN) on or off.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Enable remote CLI</td> |
| + | <td>off | on; default: <b>off</b></td> |
| + | <td>Turns CLI access from remote networks (WAN) on or off.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Port range</td> |
| + | <td>range of integers [0..65534]-[1..65535]; default: <b>4200-4220</b></td> |
| + | <td>Selects which ports to use for CLI access.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Shell limit</td> |
| + | <td>integer [1..10]; default: <b>5</b></td> |
| + | <td>Maximum number of active CLI connections.</td> |
| + | </tr> |
| + | </table> |
| + | |
| + | ===Security=== |
| + | ---- |
| + | [[File:Networking_rutx_manual_administration_access_control_security_v1.png]] |
| + | |
| + | <table class="nd-mantable"> |
| + | <tr> |
| + | <th>Field</th> |
| + | <th>Value</th> |
| + | <th>Description</th> |
| + | </tr> |
| + | <tr> |
| + | <td>Fail count</td> |
| + | <td>integer; default: <b>10</b></td> |
| + | <td>An amount of times IP address can try to access SSH or WebUI before being blocked.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Blocked address</td> |
| + | <td>ip</td> |
| + | <td>IP address which was blocked due to reaching fail count limit.</td> |
| + | </tr> |
| + | <tr> |
| + | <td>Failed attempts</td> |
| + | <td>integer</td> |
| + | <td>Amount of times IP address tried to access SSH or WebUI after getting blocked.</td> |
| </tr> | | </tr> |
| </table> | | </table> |
Line 268: |
Line 403: |
| </table> | | </table> |
| | | |
− | ==Access Control==
| |
− |
| |
− | The <b>Access Control</b> page is used to manage remote and local access to the router.
| |
− |
| |
− | <b>Important</b>: turning on remote access leaves the router vulnerable to external attackers. Make sure you use a strong password.
| |
− | <br><br>
| |
− | <b>SSH</b>
| |
− | ----
| |
− | [[File:{{{file_access_ssh}}}]]
| |
− |
| |
− | <table class="nd-mantable">
| |
− | <tr>
| |
− | <th>Field</th>
| |
− | <th>Value</th>
| |
− | <th>Description</th>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Enable SSH access</td>
| |
− | <td>off | on; default: <b>on</b></td>
| |
− | <td>Turns SSH access from the local network (LAN) on or off.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Remote SSH access</td>
| |
− | <td>off | on; default: <b>off</b></td>
| |
− | <td>Turns SSH access from remote networks (WAN) on or off.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Port</td>
| |
− | <td>integer [0..65535]; default: <b>22</b></td>
| |
− | <td>Selects which port to use for SSH access.</td>
| |
− | </tr>
| |
− | </table>
| |
− | <br>
| |
− | <b>WebUI</b>
| |
− | ----
| |
− | [[File:{{{file_access_webui}}}]]
| |
| | | |
− | <table class="nd-mantable">
| |
− | <tr>
| |
− | <th>Field</th>
| |
− | <th>Value</th>
| |
− | <th>Description</th>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Enable HTTP access</td>
| |
− | <td>off | on; default: <b>on</b></td>
| |
− | <td>Turns HTTP access from the local network (LAN) to the router's WebUI on or off.</td>
| |
− | </tr><tr><td>Enable HTTPS access
| |
− | </td><td>off | on; default: <b>on</b></td><td>Turns HTTPS access from the local network (LAN) to the router's WebUI on or off.</td></tr><tr>
| |
− | <td>Redirect to HTTPS</td>
| |
− | <td>off | on; default: <b>off</b></td>
| |
− | <td>Redirects connection attempts from HTTP to HTTPS.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Enable remote HTTP access</td>
| |
− | <td>off | on; default: <b>off</b></td>
| |
− | <td>Turns HTTP access from remote networks (WAN) to the router's WebUI on or off.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Port</td>
| |
− | <td>integer [0..65535]; default: <b>80</b></td>
| |
− | <td>Selects which port to use for HTTP access.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Enable remote HTTPS access</td>
| |
− | <td>off | on; default: <b>off</b></td>
| |
− | <td>Turns HTTPS access from remote networks (WAN) to the router's WebUI on or off.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Port</td>
| |
− | <td>integer [0..65535]; default: <b>443</b></td>
| |
− | <td>Selects which port to use for HTTPS access.</td>
| |
− | </tr>
| |
− | </table>
| |
− | <br>
| |
− | <b>CLI</b>
| |
− | ----
| |
− | [[File:{{{file_access_cli}}}]]
| |
− |
| |
− | <table class="nd-mantable">
| |
− | <tr>
| |
− | <th>Field</th>
| |
− | <th>Value</th>
| |
− | <th>Description</th>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Enable CLI</td>
| |
− | <td>off | on; default: <b>on</b></td>
| |
− | <td>Turns CLI access from the local network (LAN) on or off.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Enable remote CLI</td>
| |
− | <td>off | on; default: <b>off</b></td>
| |
− | <td>Turns CLI access from remote networks (WAN) on or off.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Port range</td>
| |
− | <td>range of integers [0..65534]-[1..65535]; default: <b>4200-4220</b></td>
| |
− | <td>Selects which ports to use for CLI access.</td>
| |
− | </tr>
| |
− | <tr>
| |
− | <td>Shell limit</td>
| |
− | <td>integer [1..10]; default: <b>5</b></td>
| |
− | <td>Maximum number of active CLI connections.</td>
| |
− | </tr>
| |
− | </table>
| |
| | | |
| ==Root CA== | | ==Root CA== |