Business Community > Routers > How to block a specific external ip address on the ER707-M2 router
< Routers

How to block a specific external ip address on the ER707-M2 router

How to block a specific external ip address on the ER707-M2 router

How to block a specific external ip address on the ER707-M2 router
How to block a specific external ip address on the ER707-M2 router
Monday - last edited Wednesday
Tags: #Firewall
Model: ER707-M2  
Hardware Version: V1
Firmware Version: 1.2.2 Build 20240324 Rel.42799

Norton Internet Security detected over 5000 requests Remote Desktop Connection from an external ip address (45.131.195.170) in this morning. I would like the router to block such an ip address and don't know how.

 

I am using ER707-M2 Ver. 1.2.2. The router current Access Control List is empty.

  0      
 
  0      
 
#1
Options
1 Accepted Solution
Re:How to block a specific external ip address on the ER707-M2 router-Solution
Wednesday - last edited Wednesday

Hi @KennethQiu 

Thanks for posting in our business forum.

See the guide: How to limit specific IP to access to internal server by TP-LINK SMB router

We do not recommend port forward ports like remote desktops. This is too dangerous to do. If you really expose its remote desktop port, you should consider adding 2FA to the remote desktop computer.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
Recommended Solution
  1  
  1  
#2
Options
3 Reply
Re:How to block a specific external ip address on the ER707-M2 router-Solution
Wednesday - last edited Wednesday

Hi @KennethQiu 

Thanks for posting in our business forum.

See the guide: How to limit specific IP to access to internal server by TP-LINK SMB router

We do not recommend port forward ports like remote desktops. This is too dangerous to do. If you really expose its remote desktop port, you should consider adding 2FA to the remote desktop computer.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
Recommended Solution
  1  
  1  
#2
Options
Re:How to block a specific external ip address on the ER707-M2 router
Yesterday

  @Clive_A Thank you very much for your help. I am not trying to allow RDP to my PCs.

The reason for this qustion is that the Norton 360 prompts the following message on multiple PCs on my network.  These thousands of intrusions are from the same IP address. I would like to block this IP entirely from access (or connect) to my network. What is the best way to block this ip (or these IPs in the future)?

 

  0  
  0  
#3
Options
Re:How to block a specific external ip address on the ER707-M2 router
Yesterday

Hi @KennethQiu 

Thanks for posting in our business forum.

KennethQiu wrote

  @Clive_A Thank you very much for your help. I am not trying to allow RDP to my PCs.

The reason for this qustion is that the Norton 360 prompts the following message on multiple PCs on my network.  These thousands of intrusions are from the same IP address. I would like to block this IP entirely from access (or connect) to my network. What is the best way to block this ip (or these IPs in the future)?

 

 

 

That's strange if you say that you have not exposed the PC to the public Internet.
It should not be possible to access the 192.168.0.150 from the WAN unless you have port-forwarded it.

A private IP address is not accessible on the public Internet.

 

This looks like a brutal force attack. You can use the ACL to block WAN IN and block that IP address.

In the future, if you see other IP ranges, you can block them as well.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  0  
  0  
#4
Options

Information

Helpful: 0

Views: 53

Replies: 3

Tags

Firewall
Related Articles
Assign specific IP address to switch port
842 0
Wireguard as gateway of specific VLAN
360 0
Setup dual WAN, how to force devices on specific VLANs touse use a specific gateway/WAN
1012 0
 Setting up a VLAN with a specific IP address
739 0
 Lan ip and external IP thru specific WAN Port
618 0
Block Incomming IP´s
703 0
About Us
Press
Copyright © TP-Link Systems Inc. All rights reserved.