Posted: Wed Jul 08, 2020 20:30 Post subject: Firewall Error blocked out of router.
The photo implies 192.168.1.1
I only want my router to be accessible via LAN not WAN.
So I went in and saw web management and remote access
I un-ticked the HTTP and HTTPS top column that said web access and left the bottom remote management left open with access to my computer range of 192.168.1 - 192.168.1.50 to allow access.
Thinking this would solve the error from the picture.
It did not I'm still getting the same error.
As well as now I can not log back in to my router.
It will not let me back in 192.168.1.1
What do I have to do to get back in.
It took me a few hours setting the new firmware up.
I do not want to reset or flash the firmware again to get back in my router.
ssh: connect to host 192.168.1.1 port 22: Connection refused
192.168.1.1 in firefox says ...
ok idk what happen but it magically came back i can access 192.168.1.1 after trying to connect to my IPV6 router page then ssh and not being able to do anything I typed 192.168.1.1 in firefox to see what the error said tho I'm sure it said connection refused or something, and it some how reset good. I can get back in the router!
but what should this be set too just out of curiosity for only the PC i'm currently on now 192.168.1.42 to connect I dont want no access from outside this machine threw the LAN. no online connections only this local computer of 42
Sorry forgot to add the picture of what I was asking.
for what to put here in these settings so ONLY my 192.168.1.42 PC can access the router no ONLINE connections just local 1 pc.
P.S. also really weird that reset like that as I was locked out I did not do anything but login via ipv6 then attempt ssh to which i could not do anything, but I got back in as you can see so something happened good for me tho. Now I just need to fix this and block the outside world from access router.
Joined: 08 May 2018 Posts: 14246 Location: Texas, USA
Posted: Wed Jul 08, 2020 20:56 Post subject:
The remote access configurations are for configuring from the WAN, not LAN. Probably what happened was that the networking had to restart as you applied or rebooted the router. You do not want to enable WAN access configuration to the router unless you are sure you know what you are doing. Disable all of that. HTTP access for the LAN is fine. You cannot easily disable webUI access from wireless, unfortunately. _________________ "Life is but a fleeting moment, a vapor that vanishes quickly; All is vanity"
Contribute To DD-WRT Pogo - A minimal level of ability is expected and needed... DD-WRT Releases 2023 (PolitePol)
DD-WRT Releases 2023 (RSS Everything)
----------------------
Linux User #377467 counter.li.org / linuxcounter.net
Yes you want "Web Access" enabled, at least http checked and then under Remote Access only the first 3 disabled. The last one does not matter since the first 3 are disabled. And those are only applicable for the WAN side (ie the internet side). I would just leave it as enabled, and that is it.
"Enable info site" is the site that people can see without logging into your router from the LAN side, ie it just give status on the router. The MAC Masking means that people who are not logged into the router the MAC addresses will have xx for the first four groupings of the MAC (ie the vendor id and the first part of the unique hardware id).
That is personal preference if you want to keep those enabled or not
Hey thanks guys for the info and help. I appreciate it.
I sort of knew some of these things just needed reassurance since I got locked out by mistake, and that was a little scary...did not want to redo the whole flash.