Manualshelf

User Manual

ManualsBrandsSYNOLOGY ManualsComputers & LaptopsSynology RT2600AC IEEE 802.11ac Ethernet Wireless Router - 2.40 GHz ISM Band - 5 GHz UNII Band(4 x External) - 2600 Mbit/s Wirel
11121314151617181920
16
Chapter 5: Enhance Connection Security
Create Firewall Rules
Firewall rules lter external IPv4 and IPv6 access to your Synology Router based on the specied conditions (e.g.
ports and source IP addresses).
To create rewall rules on general trafc, go to
Network Center
>
Security
>
Firewall
.
To modify Internet access policies on SRM services/packages, go to
Network Center
>
Security
>
Service
.
Note:
Firewall rules can apply to trafc from WAN to LAN or from WAN to SRM.
External Access Restriction
This function allows external access to SRM via the HTTP/HTTPS ports (e.g. 8000/8001). External access via
other ports will be denied.
To enable this function, go to
Control Panel
>
System
>
SRM Settings
and select
Allow external access to
SRM
.
Note:
For security reasons, if you enable this option and disable it later, your Synology Router will deny all external
access even via the HTTP/HTTPS ports.
Enforce Auto Block
Auto block automatically blocks certain IP addresses with multiple failed login attempts. These IP addresses will
be agged as a source of potential malicious attacks.
To enable auto block, go to
Network Center
>
Security
>
Auto Block
.
Create Certicates
Creating a certicate from your Synology Router is equal to issuing a certied ID. If you import the certicate (a
.crt le) to another device (e.g. your mobile phone), your Synology Router can identify and communicate with the
device via a secured connection (e.g. HTTPS or SSL).
You can also import a certicate from a certicate authority so that your Synology Router can access another
server.
To create or manage the certicate, go to
Control Panel
>
Services
>
Certicate
.
Additional Security Measures
More security measures are available to ne-tune SRM security policies at
Network Center
>
Security
>
General
. There you can set up the logout timer, help your browser skip IP checking, and additional security
hardening options.
You are recommended to use
Security Advisor
, the integrated security feature that scans your SRM settings
and Synology Router for settings and recommend changes that help keep your network secure.