在安全市场上可用的众多防火墙中,有路由器防火墙。与软件防火墙不同,路由器防火墙尝试并阻止服务器级别的传入查询请求,从而确保您的整个网络安全。由于路由器是大多数网络的端点,并且是将网络上的任何计算机连接到Internet的唯一点,因此打开路由器防火墙可确保您的网络安全。
如何设置路由器防火墙
本文讨论如何设置路由器防火墙或配置路由器以激活防火墙。我们还会看看您需要哪些端口才能正常工作。
打开路由器防火墙配置(Router Firewall Configuration)和设置(Settings)页面
在打开路由器防火墙之前,您需要 IP 地址才能进入配置页面。要获取地址,请按Windows Key + R. Type CMD打开“运行(RUN)”对话框。键入 CMD并按Enter。
在命令窗口中,键入IPCONFIG /ALL并按Enter。记下网关(Gateway)旁边提供的 IP 地址。
您必须在浏览器地址栏中输入该地址(以数字形式,包括点)才能打开路由器配置页面。这个数字在大多数情况下都有效。如果它不起作用,请联系路由器支持以获取地址。
阅读(Read):调制解调器和路由器之间的区别(Difference between a Modem and a Router)。
配置路由器防火墙
这只是打开/关闭防火墙。如果您安装了Windows,则操作系统可能已经在安装过程中设置了您的路由器。您也可以使用您喜欢的浏览器手动设置它。
设置路由器防火墙:
- 通过在浏览器中输入路由器 IP 地址来访问路由器主页(您在上一节中记下的那个;例如:192.168.1.1)
- 检查路由器主页上的防火墙选项。(Firewall)此选项可以分组为不同的名称,例如高级设置(Advanced Settings)
- 如果防火墙(Firewall)已停用或未启用,请单击以选择并激活它。
下图显示了Binatone 以太网(Binatone Ethernet)路由器上启用的防火墙。
计算机/网络上的重要端口
路由器配置页面因制造商而异。但是,打开或阻止一组端口的选项应该存在于所有端口上。您应该寻找“端口转发”来阻止未经授权的访问请求,而不会阻止您的重要Internet连接。以下是您需要保持打开状态的端口列表。如果在Windows上,您不必担心,因为它会处理端口限制。
- 端口号 80(PORT NUMBER 80)允许Internet 访问(Internet Access)( HTTP )
- 端口号 443(Port Number 443)允许安全 Internet 访问(Secure Internet Access)( HTTPS )
- 端口号 25(Port Number 25)是您可以访问电子邮件的端口 ( SMTP )
保持打开上述端口足以正常浏览和电子邮件工作。根据您的特殊软件需求,可能需要额外的端口。在这些情况下,软件本身将负责打开所需的端口。
提示:(TIP:) 端口 80(Port 80)可能会带来问题。要了解您是否拥有正确配置的路由器,请访问grc.com并运行ShieldsUP测试。此测试检查您的路由器是否响应或忽略UPnP ((UPnP)通用即插即用(Universal Plug)设备(Play) )(Devices)请求以访问您的网络。结果应该是“忽略”。如果您看到负面结果,也就是说,如果您的路由器“响应”任何此类请求,您可能需要向熟悉路由器的人寻求帮助以更好地配置它。或者,您可以添加额外的软件防火墙(software firewall)。TheWindowsClub也有一篇关于硬件防火墙和软件防火墙的区别(difference between hardware and software firewalls)。
这解释了如何配置和设置路由器防火墙——以及在进行高级配置时要记住哪些端口。如果您有任何问题或疑问甚至提示,请使用评论部分与我们分享。转到此处阅读如何管理 Windows 防火墙。
相关(Related):如何访问和更改 WiFi 路由器设置(change WiFi Router Settings)。
How to configure & set up Router Firewall settings
Among the many fіrewallѕ available in the ѕecurity markеt are router firеwalls. Unlike thе software firewall, thе router fіrewall attempts and blocks incoming query requests at the server level thеreby keeping your entire network safe. Αs the router іs the endрoint of most networkѕ and is the only point connecting any computer on your network to the Internet, turning on the router firewall keeps your network safe.
How to set up a Router Firewall
This article talks about how to set up a router firewall or configure your router for activating the firewall. We also take a look at what all ports do you need for regular working.
Open Router Firewall Configuration & Settings Page
Before you can turn on the router firewall, you will need the IP address to get to the configuration page. To get the address, open the RUN dialog by pressing Windows Key + R. Type CMD and press Enter.
In the command window, type IPCONFIG /ALL and press Enter. Make a note of the IP address provided next to Gateway.
You will have to type that address (in the form of numbers, including the dots) into a browser address bar to open the router configuration page. That number would work in most cases. If it doesn’t work, please contact router support for the address.
Read: Difference between a Modem and a Router.
Configure Router Firewall
This is simply turning the firewall on/off. If you’ve installed Windows, chances are the operating system has already set up your router during installation. You can set it up manually too, using a browser of your preference.
To set up a router firewall:
- Access the router homepage by typing router IP address in a browser (The one you noted down in the above section; example: 192.168.1.1)
- Check for the Firewall option on the router homepage. This option can be grouped under different names such as Advanced Settings
- If the Firewall is deactivated or not enabled, click to select and activate it.
The image below shows an enabled firewall on a Binatone Ethernet router.
Important Ports On A Computer/Network
The router configuration page differs across different manufacturers. However, the option to open or block a set of ports should be present on all. You should look for “port forwarding” to block unauthorized access requests in a way that you do not block your important Internet connections. The following is a list of ports you need to keep open. If on Windows, you need not worry as it takes care of the port restrictions.
- PORT NUMBER 80 allows for Internet Access (HTTP)
- Port Number 443 allows for Secure Internet Access (HTTPS)
- Port Number 25 is the port through which you can access emails (SMTP)
Keeping open the above ports is sufficient for normal browsing and email work. Additional ports may be required depending upon your special software needs. In those cases, the software itself will take care of opening the required port.
TIP: Port 80 is the one that can provide problems. To know if you have a properly configured router, visit grc.com and run the ShieldsUP test. This test checks if your router responds or ignores UPnP (Universal Plug and Play Devices) requests to access your network. The result should be ‘ignore’. If you see negative results, that is, if your router ‘responds’ to any such requests, you may want to take the help of someone having good knowledge of routers to configure it better. Or, you can add an additional software firewall. TheWindowsClub also has a good article on the difference between hardware and software firewalls.
This explains how to configure and set up a router firewall – and what ports to keep in mind, should you go for advanced configurations. If you have any questions or doubts or even tips, please share them with us using the comments section. Go here to read how to manage the Windows Firewall.
Related: How to access and change WiFi Router Settings.
