TP-Link AC1900 Wi-Fi Router Archer A8 User Manual Network Security
This chapter guides you on how to protect your home network from cyber attacks and unauthorized users by implementing these three network security functions. You can protect your home network from cyber attacks, block or allow specific client devices to access your network using Access Control, or you can prevent ARP spoofing and ARP attacks using IP & MAC Binding.
It contains the following sections:
Protect the Network from Cyber Attacks
Access Control
IP & MAC Binding
ALG (Application Layer Gateway)
Protect the Network from Cyber Attacks
The SPI (Stateful Packet Inspection) Firewall protects the router from cyber attacks and validate the traffic that is passing through the router based on the protocol. This function is enabled by default.
Visit http://tplinkwifi.net, and log in with your TP-Link ID or the password you set for the router.
Go to Advanced > Security > Firewall. It’s recommended to keep the default settings.
Access Control
Access Control is used to block or allow specific client devices to access your network (via wired or wireless) based on a list of blocked devices (Blacklist) or a list of allowed devices (Whitelist).
I want to:
Block or allow specific client devices to access my network (via wired or wireless).
How can I do that?
Visit http://tplinkwifi.net, and log in with your TP-Link ID or the password you set for the router.
Go to Advanced > Security > Access Control.
Toggle on to enable Access Control.
Select the access mode to either block (recommended) or allow the device(s) in the list.
To block specific device(s):
Select Blacklist.
Click and select devices you want to be blocked and Click ADD.
The Operation Succeeded message will appear on the screen, which means the selected devices have been successfully added to the blacklist.
To allow specific device(s):
Select Whitelist and click SAVE.
Your own device is in the whitelist by default and cannot be deleted. Click to add other devices to the whitelist.
Add connected devices
Click Select From Device List.
Select the devices you want to be allowed and click ADD.
The Operation Succeeded message will appear on the screen, which means the selected devices have been successfully added to the whitelist.
Add unconnected devices
Click Add Manually.
Enter the Device Name and MAC Address of the device you want to be allowed and click ADD.
The Operation Succeeded message will appear on the screen, which means the device has been successfully added to the whitelist.
Done!
Now you can block or allow specific client devices to access your network (via wired or wireless) using the Blacklist or Whitelist.
IP & MAC Binding
IP & MAC Binding, namely, ARP (Address Resolution Protocol) Binding, is used to bind network device’s IP address to its MAC address. This will prevent ARP Spoofing and other ARP attacks by denying network access to an device with matching IP address in the Binding list, but unrecognized MAC address.
I want to:
Prevent ARP spoofing and ARP attacks.
How can I do that?
Visit http://tplinkwifi.net, and log in with your TP-Link ID or the password you set for the router.
Go to Advanced > Security > IP & MAC Binding.
Enable IP & MAC Binding.
Bind your device(s) according to your need.
To bind the connected device(s):
Click in the Binding List section.
Click VIEW CONNECTED DEVICES and select the device you want to bind. The MAC Address and IP Address fields will be automatically filled in.
Click SAVE.
To bind the unconnected device:
Click in the Binding List section.
Enter the MAC Address and IP Address that you want to bind.
Done!
Now you don’t need to worry about ARP spoofing and ARP attacks!
ALG (Application Layer Gateway)
View your ALG (Application Layer Gateway) settings in this page. It is recommended to keep them as default.
Was this information helpful?