When you say this description is probably misleading
, to which description are you referring, my suggestion of mislabeling or ???
I am still unclear. Does
enable/disable just SPI
or does it enable/disable more? If so, what?
I disabled the Firewall
using this setting and not much in any of the tabs (that I noticed) under Advanced Settings
seemed to change. Respond Ping Request from WAN
is greyed out when the Firewall
is disabled and not greyed out when the Firewall
is enabled. I don't know if this changes the Respond Ping Request from WAN or just prevents its being changed. Other Firewall
features still had to be (could be) enabled/disabled separately, so the Enable Firewall
selector doesn't seem to affect the whole Firewall
In the past, my routers have all had the ability to turn SPI
on/off, separately and I was surprised not to see that option here and I wondered if this was actually it. In fact, I would have expected to see an Enable SPI Yes/No
selector at exactly this spot in the router's web interface.
I am trying to understand what these settings actually do on this router and what the implications are. The manual skips over the entire topic of Firewalls.
So far, I am liking this router and the features it has. In particular, I am trying to develop a better understanding of how the Respond Ping Request from WAN
(which I have used for years), enable Web Access from WAN
(which is new to me and somewhat worrisome), the Firewall (including SPI (which I have always used)) and the services the router can provide to me from outside my own network (new to me) interact and what security risks using these services brings. But I have more reading to do before I can ask any of those questions. The manual is remarkably silent on these topics too, as far as I can tell.
I am running stock 22.214.171.124.260 right now.
Oh and I thought the intrusion detection
above just referred to the router's SPI feature, nothing more.
When Enable Firewall
is set to No
, the router responds to pings from the WAN even if the (now greyed out) Respond Ping Request from WAN was
set to, and now displays, No
. Also the Logged packets type
selector is greyed out but left at whatever it was set to. So Enable Firewall
certainly controls more than just SPI
So, one must conclude that a greyed out setting, meaning that one cannot change it, does not necessarily indicate the correct state of the setting. I find that disturbing. Perhaps I am expecting too much?