Menu
What's new
By:
Filters Better Search

ASUS Router Security

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

J

JCW3

Occasional Visitor
It bothers me that ASUS routers do not provide an option in setup to prevent access to their Web management pages from the WAN. All routers I've used previously have done this, and often more, like preventing wireless login to the management pages and/or allowing only specified MAC addresses to login. How do you folks cope with this? Are there other compensating security features that I'm missing? Thanks in advance for any insight to this newbie to the ASUS line. -- JCW3
 
JCW3 said:
How do you folks cope with this?
Click to expand...

Administration, System:

Untitled_wan.png
 
ColinTaylor said:
They do.
Click to expand...
Colin -- OK, can you point me to this feature? I just tried to set up a RT-AC68U and cannot find that feature anywhere on its Web management pages. I chatted with ASUS tech support, who confirmed that they did not. I'm happy to be proven wrong... -- JCW3
 
Access to web management is disabled by default. Sad to say there are still foolish people who enable it anyway.
 
bbunge said:
Sad to say there are still foolish people who enable it anyway.
Click to expand...

Asus Router app opens Web Access from WAN. Some people don't know it's open.
 
Is the AC68U in Router mode, or Access Point mode, etc.? The option is only visible and applicable in Router mode. Seems odd you can’t find it.
 
ColinTaylor said:
See post #3.
Click to expand...
OK, I see it now.

Odd that I was not able to get a correct answer on this from Chat support. They also seemed unaware of the options there to effectively prevent wireless administration of the router (Only Allow Specific IP).

I'm still not clear on the usefulness of Authentication Method (HTTP, HTTPS, or Both)... -- JCW3
 
Last edited:
JCW3 said:
I'm still not clear on the usefulness of Authentication Method (HTTP, HTTPS, or Both)
Click to expand...

Asus Router app after recent updates requires HTTPS even on local network. You also have the option to enable access from WAN, if you want to.
 
Tech9 said:
Asus Router app after recent updates requires HTTPS even on local network. You also have the option to enable access from WAN, if you want to.
Click to expand...
Not true. The app may suggest https but you can ignore that.

As for the foolish ones that still use WAN access, there were a couple of folks on the 386.5 release thread that were discussing upgrades using the WAN access. Nominees for the Darwin Award...
 
One more question about this ASUS RT-AC68U router: Is there any way to prevent administration from its wireless LAN or, failing that, to limit wireless administration to certain MAC addresses?

I can't find one, and often that feature is absent... -- JCW3
 
JCW3 said:
One more question about this ASUS RT-AC68U router: Is there any way to prevent administration from its wireless LAN or, failing that, to limit wireless administration to certain MAC addresses?

I can't find one, and often that feature is absent... -- JCW3
Click to expand...

Not that I know of besides 'don't login over WiFi'.

OE
 
JCW3 said:
One more question about this ASUS RT-AC68U router: Is there any way to prevent administration from its wireless LAN or, failing that, to limit wireless administration to certain MAC addresses?

I can't find one, and often that feature is absent... -- JCW3
Click to expand...
The Enable Access Restrictions option on the Administration > System page may or may not work to answer your question. The tooltip for Enabled Access Restrictions indicates the following:
This features allows you to restrict access to the wireless router via "Web UI" / "SSH" / "Telnet" to only specified IP addresses and networks from WAN (if Enabled) or LAN sides. "Telnet" access from WAN side is forbidden.
Click to expand...
enableaccessrestrictions.jpg
 
bennor said:
The Enable Access Restrictions option on the Administration > System page may or may not work to answer your question...
Click to expand...
Interesting! If "Web UI" means what it sounds like, it might just work for me. This option is newer than the user guide I downloaded; I know from experience that Asus tech-support chat gives out anti-information; so I suppose experimentation is the only way...

...unless somebody else here knows. Cheers! -- JCW3
 
JCW3 said:
Interesting! If "Web UI" means what it sounds like, it might just work for me. This option is newer than the user guide I downloaded; I know from experience that Asus tech-support chat gives out anti-information; so I suppose experimentation is the only way...

...unless somebody else here knows. Cheers! -- JCW3
Click to expand...

Let us know how it works out... that's part of the give and take around here.

OE
 
JCW3 said:
Interesting! If "Web UI" means what it sounds like, it might just work for me. This option is newer than the user guide I downloaded; I know from experience that Asus tech-support chat gives out anti-information; so I suppose experimentation is the only way...

...unless somebody else here knows. Cheers! -- JCW3
Click to expand...
Quick test with a single IP address works to limit access to the web ui. No other devices can access the web ui.
 
bennor said:
Quick test with a single IP address works to limit access to the web ui. No other devices can access the web ui.
Click to expand...
Thanks, bennor, for checking this out!

I guess all I would need to do is make a DHCP reservation for the MAC address of the computer that will do the administration (I think that prevents any other machine from taking that IP address) and then enter the reserved IP address in the "Remote Access Configuration" box as you indicated.

I'll check this out with a new RT-AC68U that I have on order and report back in a week or two. (I'm in the process of upgrading my whole home Wi-Fi system, and another new router is needed. I've already put the first one into service for my less-secure "Internet of Things" and would draw howls if I messed around with it now.) -- JCW3
 
You must log in or register to reply here.

Similar threads

D
Feature request: Two factor authentication web login. (TOTP)
Replies
8
Views
940
DJones
D
V
Guest Network - RP-AX58 & RT-AX58U
Replies
1
Views
221
Valyno
V
C
Had trouble setting up ASUS BE98 Pro
Replies
1
Views
272
jzchen
J
K
Latest RT-AC68U Asuswrt stock vs Merlin security
Replies
6
Views
3K
KrypteX
K
U
Wired router recommendation to connect two subnets with a modem
Replies
16
Views
1K
Tech9
Tech9
Similar threads
Thread starter Title Forum Replies Date
Y Need help accessing Asus AC3200 router ASUS AC Routers & Adapters (Wi-Fi 5) 7
TheRobLP router.asus.com stopped working | 4G-AC86U ASUS AC Routers & Adapters (Wi-Fi 5) 6
C Powering a 19V Asus Router with a USB-PD laptop Cord? ASUS AC Routers & Adapters (Wi-Fi 5) 7
O How isolated are guest networks in the ASUS RT-AC57U V3 router? ASUS AC Routers & Adapters (Wi-Fi 5) 4
V router asus rt-ac86u LIMIT ASUS AC Routers & Adapters (Wi-Fi 5) 11
K OpenVPN on Asus Router (DSL-AC88U) - No internet for client ASUS AC Routers & Adapters (Wi-Fi 5) 2
Fabius ASUS DSL-AC68U Dual WAN ethernet ASUS AC Routers & Adapters (Wi-Fi 5) 7
G ASUS AC66U_B1 as a VPN Server on LAN ASUS AC Routers & Adapters (Wi-Fi 5) 2
P ASUS RT-AC68U CPU heats up near 100C ASUS AC Routers & Adapters (Wi-Fi 5) 8
joebloogs ASUS RT-AX86U Pro ASUS AC Routers & Adapters (Wi-Fi 5) 6

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 549 (members: 10, guests: 539)
Top