TL-WR720N

150Mbps Wireless N Router

Click the

Delete All

button to delete all entries

Click the

Next

button to go to the next page and the

Previous

button to return to the previous

page.

For example

: if you want to block the PC(s) on your LAN to access websites www.xxyy.com.cn,

www.aabbcc.com and websites with .net in the end on the Internet while no limit for other

websites, you should specify the following Domain filtering list:

4.9.4

MAC Address Filtering

Like the IP Address Filtering page, the MAC Address Filtering page allows you to control access

to the Internet by users on your local network based on their MAC Address.

Figure 4-43 MAC address Filtering

Before setting up MAC Filtering entries, you must ensure that

Enable

Firewall and

Enable

MAC

Filtering have been selected on the Firewall page. To Add a MAC Address filtering entry, clicking

the

Add New…

button. The page "

Add or Modify a MAC Address Filtering entry

" will appear,

shown in Figure 4-44:

Figure 4-44 Add or Modify a MAC Address Filtering entry

-53-

TL-WR720N

150Mbps Wireless N Router

To add or modify a MAC Address Filtering entry, follow these instructions:

1.

Enter the appropriate MAC Address into the

MAC Address

field. The format of the MAC

Address

is

XX-XX-XX-XX-XX-XX

(X

is

any

hexadecimal

digit).

For

example:

00-0E-AE-B0-00-0B.

2.

Type the description of the PC in the

Description

field. Fox example: John’s PC.

3.

Select

Enabled

or

Disabled

for this entry on the

Status

pull-down list.

4.

Click the

Save

button to save this entry.

To add additional entries, repeat steps 1-4.

To modify or delete an existing entry:

1.

Click the

Modify

in the entry you want to modify. If you want to delete the entry, click the

Delete

.

2.

Modify the information.

3.

Click the

Save

button.

Click the

Enable All

button to make all entries enabled.

Click the

Disable All

button to make all entries disabled.

Click the

Delete All

button to delete all entries

Click the

Next

button to go to the next page and click the

Previous

button to return to the

previous page.

Fox example:

If you want to block the PC with MAC addresses 00-0A-EB-00-07-BE and

00-0A-EB-00-07-5F to access the Internet, first, enable the

Firewall

and

MAC Address Filtering

on the

Firewall

page, then, you should specify the Default MAC Address Filtering Rule "

Deny

these PC(s) with effective rules to access the Internet

" on the Firewall page and the following

MAC address filtering list on this page:

4.9.5

Local Management

Choose menu “

Security

→

Local Management

”, and then you can configure the management

rule in the screen as shown in Figure 4-45. The management feature allows you to deny

computers in LAN from accessing the Router.

-54-

TL-WR720N

150Mbps Wireless N Router

Figure 4-45 Local Management

By default, the radio button “

All the PCs on the LAN are allowed to access the Router's

Web-Based Utility

” is checked. If you want to allow PCs with specific MAC Addresses to access

the Setup page of the Router's Web-Based Utility locally from inside the network, check the radio

button “

Only the PCs listed can browse the built-in web pages to perform Administrator

tasks

”, and then enter each MAC Address in a separate field. The format for the MAC Address is

XX-XX-XX-XX-XX-XX (X is any hexadecimal digit). Only the PCs with MAC address listed can

use the password to browse the built-in web pages to perform Administrator tasks while all the

others will be blocked.

After click the

Add

button, your PC's MAC Address will be placed in the list above.

Click the

Save

button to save your settings.

)

Note:

If your PC is blocked but you want to access the Router again, use a pin to press and hold the

WPS/RESET

button on the back panel for at least 5 seconds to reset the Router’s factory

defaults on the Router’s Web-Based Utility.

4.9.6

Remote Management

Choose menu “

Security

→

Remote Management

”, and then you can configure the Remote

Management function in the screen as shown in Figure 4-46. This feature allows you to manage

your Router from a remote location via the Internet.

-55-

TL-WR720N

150Mbps Wireless N Router

Figure 4-46 Remote Management

¾

Web Management Port -

Web browser access normally uses the standard HTTP service

port 80. This Router's default remote management web port number is 80. For greater

security, you can change the remote management web port to a custom port by entering that

number in the box provided. Choose a number between 1 and 65534 but do not use the

number of any common service port.

¾

Remote Management IP Address

-

This is the current address you will use when accessing

your Router from the Internet. This function is disabled when the IP address is set to the

default value of 0.0.0.0. To enable this function change 0.0.0.0 to a valid IP address. If set to

255.255.255.255, then all the hosts can access the Router from internet.

)

Note:

1.

To access the Router, you should type your Router's WAN IP address into your browser's

address (in IE) or Location (in Navigator) box, followed by a colon and the custom port

number. For example, if your Router's WAN address is 202.96.12.8, and the port number

used is 8080, please enter http://202.96.12.8:8080 in your browser. Later, you may be asked

for the Router's password. After successfully entering the username and password, you will

be able to access the Router's web-based utility.

2.

Be sure to change the Router's default password to a very secure password

.

4.9.7

Advanced Security

Using Advanced Security page, you can protect the router from being attacked by TCP-SYN

Flood, UDP Flood and ICMP-Flood from LAN.

-56-

TL-WR720N

150Mbps Wireless N Router

Figure 4-47 Advanced Security settings

¾

Packets Statistic interval (5 ~ 60) -

The default value is 10. Select a value between 5 and

60 seconds in the pull-down list. The

Packets Statistic interval

value indicates the time

section of the packets statistic. The result of the statistic used for analysis by

SYN Flood

,

UDP Flood

and

ICMP-Flood

.

¾

DoS Protection -

Enable

or

Disable

the DoS protection function. Only when it is enabled,

will the flood filters be effective.

¾

Enable ICMP-FLOOD Attack Filtering -

Enable

or

Disable

the

ICMP-FLOOD

Attack

Filtering.

¾

ICMP-FLOOD Packets threshold: (5 ~ 3600) -

The default value is 50. Enter a value

between 5 ~ 3600 packets. When the current

ICMP-FLOOD

Packets numbers is beyond the

set value, the router will start up the blocking function immediately.

¾

Enable UDP-FLOOD Filtering -

Enable

or

Disable

the

UDP-FLOOD

Filtering.

¾

UDP-FLOOD Packets threshold: (5 ~ 3600) -

The default value is 50. Enter a value

between 5 ~ 3600 packets. When the current

UPD-FLOOD

Packets numbers is beyond the

set value, the router will start up the blocking function immediately.

¾

Enable TCP-SYN-FLOOD Attack Filtering - Enable

or

Disable

the

TCP-SYN- FLOOD

Attack Filtering.

¾

TCP-SYN-FLOOD Packets threshold: (5 ~ 3600) -

The default value is 50. Enter a value

between 5 ~ 3600 packets. When the current

TCP-SYN-FLOOD

Packets numbers is

beyond the set value, the router will start up the blocking function immediately.

¾

Ignore Ping Packet from WAN Port

-

Enable

or

Disable

ignore ping packet from WAN port.

The default is disabled. If enabled, the ping packet from the Internet cannot access the

router.

-57-