ACL doesnt work

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

ACL doesnt work

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
ACL doesnt work
ACL doesnt work
2022-10-09 16:28:22 - last edited 2023-03-14 03:06:21
Tags: #ACL
Model: ER7206 (TL-ER7206)  
Hardware Version: V1
Firmware Version: 1.2.1 Build 20220512 Rel.77113

I'm trying the configure ACL to limit access to an RDP server behind the  ER7206 and it absolutely dosen't work,  I'm a 20yr+ ITprofessional, I've configured pretty much every type router out there, from Cisco on down, this is the first time trying this device. This shouldnt be this difficult.  I followed this guide to the tee.  

 

https://www.youtube.com/watch?v=WgANlWL51PE

 

I created the ACLs to only allow access to the RDP server from one specific outside IP but once activated, I CAN still access the server from ANY outside computer.

 

Anyone know what could be the issue or is this device a POS and return it?

  1      
  1      
#1
Options
4 Reply
Re:ACL doesnt work
2022-10-10 12:57:27

  @TechTrader 

 

What do you mean by accessing the server from an external PC specifically?
Can it ping through?
Normally, the ER7206 is a NAT device, and without setting the port forwarding, external devices cannot access the internal server.
How exactly is the ACL set up?

Just striving to develop myself while helping others.
  0  
  0  
#2
Options
Re:ACL doesnt work
2022-10-10 17:20:45

  @TechTrader 

 

1- Set up a "Service type" port 3389 for RDP

2- Setup an IP group with the one external IP address you want to permit access to called AllowedIPgrp

3 - Setup an IP group with the RDP server ip in it called RDPgrp

4 - Make sure Virtual SErver (port forwarding) for Port 3389 is set up

5 - Make one ACL rule Allow / RDP service / WAN In / Source - AllowedIPgrp Destination - RDPgrp

6 - Make one ACl rule Block / RDP service / WAN In / Source - IPGRP_ANY Destination - RDPgrp

 

Make sure ACL rule that allows the specific IP as above the one that blocks all the others

  0  
  0  
#3
Options
Re:ACL doesnt work
2022-10-11 17:58:12 - last edited 2022-10-11 17:59:09

  @Virgo 

I want to allow access to the RDP server on the LAN from only a specific external address.  I followed this guide 

https://www.youtube.com/watch?v=WgANlWL51PE   which is exactly what I'm trying to accomplish.

 

  0  
  0  
#4
Options
Re:ACL doesnt work
2022-10-11 18:00:44
I'm pretty sure that's how I configured it based on the guide I mentioned but I'll try it again and keep you posted. Thx for the reply.
  0  
  0  
#5
Options