User's Manual

ManualsBrandsTranzeo Wireless Technologies ManualsElectronicsWIRELESS MESH ROUTER

EnRoute50x/51x User’s Guide

TR0153 Rev. D2

12 Controlling Access to the EnRoute500

The EnRoute500 supports the following features for restricting access to the mesh node, inter-

client device communication and access to mesh nodes and client devices from an external

network:

Firewall

Client-to-client communication blocking

Gateway firewall

It further supports controlled network access by client devices through MAC address black lists

and mesh association through MAC white lists.

12.1 Firewall

The EnRoute500 has a firewall that blocks traffic destined for the EnRoute500. This prevents

client devices attached to a node and devices on the mesh gateway WAN from connecting to

the node.

The firewall only affects packets destined for the EnRoute500. All traffic destined for

devices „past‟ the EnRoute500 is not affected by the firewall. This means the firewall

needs to be enabled on every EnRoute500 or connected clients will have full access

to the EnRoute500‟s private ports.

By default, the ports listed in Table 14 are set to be allowed.

Function

Port

Type

Protocol

SSH

Source & destination

TCP

HTTPS

443

Destination

TCP

HTTP redirect

3060

Destination

TCP

DNS

Source & destination

UDP

DHCP

Destination

UDP

DHCP

Destination

UDP

Roaming support

7202

Destination

UDP

Roaming support

7203

Destination

UDP

Table 14. Source and destination ports allowed by default