Home  >  Support  >  Support Forum  >  Securing remote access on WR44v2
Notice! We've recently migrated to using a new forum, we hope you enjoy it. If you are an existing member and this is your first time visiting our new forum, please reset your password to be able to sign in.
Welcome to Digi Forum, where you can ask questions and receive answers from other members of the community.

Securing remote access on WR44v2

0 votes
Good Afternoon,

I'm using a TransPort WR44v2 in IP passthrough mode, but have an http pinhole which allows me remote access to the device. The firewall rules are a bit confusing to me on these devices, what is the best way to :

a) disable http and only access via https
b) only allow access via https from my internet address

I appreciate the feedback!
asked Dec 4, 2013 in Digi TransPort Cellular by Jsdurst New to the Community (0 points)

Please log in or register to answer this question.

1 Answer

0 votes
Hello,

I recommend you to disable HTTP & Telnet access and filtering HTTPS / SSH access via the Firewall.

A Firewall example to filtering Administration Access:

#Allow any outbound traffic and the replies back in
pass out break end inspect-state
#Allow incoming SSH
pass in break end proto tcp from x.x.x.x to any port=22 flags S!A inspect-state
pass in break end proto tcp from x.x.x.x/xx to any port=22 flags S!A inspect-state
#Allow incoming HTTPS
pass in break end proto tcp from x.x.x.x/xx to any port=443 flags S!A inspect-state
pass in break end proto tcp from x.x.x.x to any port=443 flags S!A inspect-state
#Block and log everything else including incoming telnet, http and FTP
block log break end
answered Dec 12, 2013 by julien.loret New to the Community (39 points)
Your M2M Expert™for Businessfor Developers
Newsletter SignupYouTubeGoogle+FacebookCopyright © 1996-2013 Digi International Inc. All rights reserved. Legal
...