🔌 Router Guides

IPCOP configuration

5min

1. Filter Configuration on IPCO

If you have not yet registered for the service you can do so by clicking on the following link: Register here. Connect to the control panel by entering the IP address of the IPCOP in the address bar of any Browser. PLEASE NOTE: Type the address as follows: https://IndirizzoIP:8443. Then log in by entering your credentials. First you need to change the DNS used by the IPCOP (RED Network). To do this click on [System], then open the [SSH Access] menu. Check the SSH Access item and click on the [Save] button to apply the changes.

FLashStart DNS edit menu
DNS Edit




To access the console, using the SSH protocol, you can use the Putty software (Click here to download Putty) Then open the Putty software and enter the IP address of the IPCOP (GREEN Network) inside the field and 8022 in the Port field. Then click on [Open] to open the console.

 Using SSH protocol via Putty software
Putty Software Configuration




Log in with your root credentials and type the command setup. Then click the enter key, and then a new page with a setup wizard will open. Select the Networking item and click on the [Select] button.

Log in with root credentials and select the Networking item
Networking menu




Navigate to the DNS and Gateway settings item and click on the [Select] button. Enter the address 185.236.104.104 in the Primary DNS field and 185.236.105.105 in the Secondary DNS field. Click on the [Ok] button and wait for the network reconfiguration procedure to complete.

Gateway settings within the DNS entry
DNS and Gateway Settings




You can then close the Putty program. PLEASE NOTE: To check if the DNS have been set correctly click on [Status], in the IPCOP web panel, and then open the [Network Status] menu. Look for the Red DNS configuration item and check if the DNS are the correct ones.

Checking DNS after closing Putty
DNS Configuration




At this point we need to configure IPCOP so that we can authenticate with our Servers. Then open the [Services] menu and then click on [Dynamic DNS]. As the service, choose dyndns.org. IMPORTANT: You do not need to be registered with the dyndns.org service as our Servers redirect the request directly to themselves. Then click on the [Add] button to proceed with the service configuration.

IPCOP Configuration from Dynamic DNS Menu
IPCOP Configuration




Then configure it as follows: » Enabled: Check the item to enable the service. » Hostname: Enter any name you like. For example, the word hostname. » Domain: Enter a domain of your choice. For example domain.com. » Username: Enter the email/username to register for the service. » Password: Enter your password. PLEASE NOTE: The password was emailed to the address specified when registering for the Cloud Filter. Finally, click [Update] to save.

Configure dynamic dns previously set
Dynamic DNS Configuration


Image Alt Text: At this point you can enable the DHCP Server so that it automatically assigns network parameters, including our DNS, to the various internal devices. To configure the DHCP Server, open the [Services] menu and then click on [DHCP Server]. Fill in the various fields as follows: » Enabled: Put a checkmark to enable the service. » Start address: Enter the first IP address in the DHCP range. » End address: Enter the last IP address of the DHCP range . » Default lease time (mins): Set the DHCP lease time (in minutes). » Primary DNS: Enter the address 185.236.104. » Secondary DNS: Enter the address 185.236.105.105. Click on the [Save] button to save the changes.

Configuring and enabling DHCP server
Dhcp server configuration




Alternatively, the DNS of the various devices within the network can be changed manually.

2. OPTIONAL: Deny DNS changes by users

It is possible to increase security by denying the user the ability to browse unfiltered, as a result of changing the DNS on their device. To do this, proceed as follows: »Open the [Firewall] menu and click on [Firewall »At this point you need to create rules to block all traffic on port 53 (DNS Service), both TCP and UDP, except those directed to our IPs. Then click on the [Outgoing Traffic] button to create a new rule.

Blocking traffic on port 53 via Firewall rule
Firewall rules




See the image below to understand how to create the rule. PLEASE NOTE: Enter the IP 185.236.104.104 in the Destination IP or Net: field.

Creating firewall rule to deny the user from changing DNS
Denial of editing for the user




Then click [Save] to add the rule. Then create another rule, similar to the previous one, except the Destination IP or Net: field must be 185.236.105.105. Finally, you need to create an additional rule with the purpose of blocking all traffic on port 53 (DNS), both TCP and UDP. See the image below to understand how to create the rule.

Creating a new rule with Destination IP different from the one previously created
New firewall rules




Other ways to ask: » How to configure IPCOP router. » IPCOP router configuration. How to.