|LANCOM Systems Support KnowledgeBase - Support Information|
Document No: 1309.2711.4324.RHOO
This document describes the recommended configuration settings for securing the access to LANCOM routers and access points which are operating a Public Spot.
1) Configure secure access control
1.1) Open the configuration for the LANCOM router or access point in LANconfig and switch to the menu item Configuration -> Management -> Admin.
1.2) Enable the option SNMP read-only community 'Public' disabled.
In the following example the potentially insecure protocols are disabled. We recommend that you configure this as a minimum security setting.
If you have configured Configuration -> Public Spot -> General on HTTPS, the access rights for HTTP in these dialog fields can be declared as denied.
2) Block Public Spot users from accessing WEBconfig
2.1) Open the configuration for the LANCOM router or access point in LANconfig and switch to the menu item Configuration -> Public Spot -> Server.
2.2) Ensure that the option WEBconfig access by Public Spot interfaces limited to authentication pages is enabled.
If you carry out a new configuration of a Public Spot, this setting is enabled by default.