Manualshelf

User's Manual

ManualsBrandsTranzeo Wireless Technologies ManualsElectronicsWIRELESS MESH ROUTER
71727374757677787980
EnRoute500 User’s Guide
TR0149 Rev. C5
79
Function Port Type Protocol
SSH 22 Source & destination TCP
HTTPS 443 Destination TCP
HTTP redirect 3060 Destination TCP
DNS 53 Source & destination UDP
DHCP 67 Destination UDP
DHCP 68 Destination UDP
Roaming support 7202 Destination UDP
Roaming support 7203 Destination UDP
Table 13. Source and destination ports allowed by default
If ports that are open by default are reconfigured to be closed, certain EnRoute500
functions will be affected. It is strongly recommended that all of the ports listed in
Table 13 be kept open.
12.2 Gateway Firewall
The gateway firewall blocks connections originating outside the mesh cluster from entering the
mesh via the gateway, protecting mesh nodes and their clients from unwanted traffic. The
gateway firewall will permit return traffic for connections that originate inside the mesh cluster
or on mesh clients.
The gateway firewall should only be enabled on EnRoute500’s that are configured as
gateways. It is possible to have the gateway firewall set to be enabled on a repeater node, but
it does not have any effect on the flow of traffic through the node’s Ethernet interface.
If you have enabled NAT (see section 11.2) on the Ethernet interface ‘eth0’, you will
have an implicit firewall that limits the type of inbound connections that are possible.
The state of the gateway firewall is controlled with the ‘gateway’ parameter in the ‘firewall’
interface. Enable the gateway firewall with
> use firewall
firewall> set gateway=yes
disable it with
> use firewall
firewall> set gateway=no