[FAQ ID: 273]How to set up access control for website blocking on TP-LINK Wireless Router?

Suitable for: Wireless N 3G Routers, 300Mbps Wireless N Routers, 150Mbps Wireless N Routers, Dual Band

TP-LINK wireless N and Dual-band Routers provide convenient internet Access Control function.You can flexibly combine the Host ListTarget List and Schedule to restrict the Internet surfing of these hosts.This document introduce how to set up website blocking on our wireless routers and we take TL-WR1043ND as example.
 
If you have TP-LINK 11G wireless router,please refer to :
If you have Archer C2,Archer C20i, please refer to:
 
Step 1: Log in to your router’s web management page.

Step 2:

Go to Access Control-Host,then click “Add New…”


Select "IP Address", then enter a short description for the host rule you want to define in the "Host Description:" box. Enter the IP address range on your network that you want to block access to .

In this example,the router TL-WR1043’s LAN IP address is 192.168.1.1,IP Range is 192.168.1.100~192.18.1.199.We are going to set up rules to block google all the time on all the devices in the network,but no restriction to any other websites.

Click "Save" - the new Host rule will now show up on the "Host Settings" page

Step 3: Go to Access Control -> Target, then click "Add New..."

Select "Domain Name" in the "Mode:" box, then enter a brief description of the rule you are setting up. In the "Domain Name:" box(es), enter the keywords you would like the router to block (these do not have to be full web addresses such as www.google.com - simply entering "google" will set the rule to block ANY domain name that contains the word "google")

Click "Save" - the new Target rule will now show up on the "Target Settings" page

Step 4: Go to Access Control -> Rule page and tick "Enable Internet Access Control", then select the option " Deny the packets specified by any enabled access control policy to pass through the Router" (if this is set to the "Allow" option, all websites other than ones you have set Host/Target rules for will be blocked), then click "Save".

Under Access Control -> Rule, click "Add New...", then enter a brief description of the rule in the "Rule Name:" box

In the "Host:" box, select the Host rule you defined in Step 2

In the "Target:" box, select the target rule you defined in Step 3

In the "Schedule:" box, select "Anytime" (this will make the rule always active)

In the "Action:" box, select "Deny"

In the "Status:" box, select "Enabled"

Click "Save" - the new Access Control rule will now show up on the "Access Control Rule Management" page .

Step 5: To test the rule, try to browse to the site you have blocked from a host PC in the IP address range you defined in the Host rule in Step 1 (for instance, http://www.google.com ). The website will be blocked, and your web browser will report that the site/server cannot be found.

 
Note:
A)    If you want to block certain websites not all the time,but certain period,you may configure the Schedule under Access Control-Schedule.
Since Schedule rules are based on the router’s time,please check the Time Settings on the router first,make sure it has the correct time zone and time .
1.Go to System Tools-Time Settings to check the time settings:
2.Go to Access Control-Schedule,click Add New .
3.Create the rule according to your requirement.In my example,I selected Monday to Friday,8:00 Am to 5 Pm.
B)    For different models, the Default Filter Policy/Rules could be different. Please pay attention to each word of the rule .
Under this Default Filter Policy,if we choose “Allow the packets specified by any enabled access control policy to pass through the Router”,that means by default it blocks all internet,and it will only Allow the created rules to use internet.
If we choose “Deny the packets specified by any enabled access control policy to pass through the Router”,that means by default it allow internet to all devices,and it will only Block the created rules to use internet.
 
 
Under this Default Filtering Rules,if we choose “Allow the packets not specified by any enabled access control policy to pass through the Router”,that means by default it allow internet to all devices,and it will only Block the created rules to use internet.
If we choose “Deny the packets not specified by any enabled access control policy to pass through the Router”,that means by default it blocks all internet,and it will only Allow the created rules to use internet.