Manualshelf

User Manual

ManualsBrandsSYNOLOGY ManualsComputers & LaptopsSynology RT2600AC IEEE 802.11ac Ethernet Wireless Router - 2.40 GHz ISM Band - 5 GHz UNII Band(4 x External) - 2600 Mbit/s Wirel
11121314151617181920
16 Chapter 6: Enhance Connection Security
Create Firewall Rules
Firewall rules lter external IPv4 and IPv6 access to your Synology Router based on the specied conditions
(e.g. ports and source IP addresses). With rewall rules, you can ne-tune security policies for better care of your
Synology Router.
To create rewall rules on general tra󰀩c, go to Network Center > Security > Firewall.
To modify Internet access policies on SRM services/packages, go to Network Center > Security > Service.
Note: Firewall rules can apply to tra󰀩c from WAN to LAN or from WAN to SRM.
External Access Restriction
This function allows external access to SRM via the HTTP/HTTPS ports (e.g. 8000/8001). External access via
other ports will be denied.
To enable this function, go to Control Panel > System > SRM Settings and select Allow external access to
SRM.
Note: For security reasons, if you enable this option and disable it later, your Synology Router will deny all external
access even via the HTTP/HTTPS ports.
Enforce Auto Block
Auto block automatically blocks certain IP addresses with too many failed login attempts. Such IP addresses will
be identied as a source of potential malicious attacks that try to nd out the password.
To enable auto block, go to Network Center > Security > Auto Block.
Create Certicates
Creating a certicate from your Synology Router is equal to issuing a certied ID. If you import the certicate (a
.crt le) to another device (e.g. your mobile phone), your Synology Router can identify and communicate with the
device via a secured connection (e.g. HTTPS or SSL).
You can also import a certicate from a certicate authority so that your Synology Router can access another
server.
To create or manage the certicate, go to Control Panel > Services > Certicate.
Use More Security Measures
More security measures are available to ne-tune SRM security policies at Network Center > Security >
General. There you can set up a logout timer, help your browser skip IP checking, and do much more.
You are also recommended to use Security Advisor, an SRM security application that scans your SRM settings
and Synology Router. Security Advisor will check your settings and recommend changes that help keep your
Synology Router safe.