ASUSTOR - Website Management

Date:

Topic_id:

Subject:

Description:

content:

<h4>COURSE OBJECTIVES</h4>
Upon completion of this course you should be able to:
<ol>
<li>Adding a trusted list on the ASUSTOR NAS.</li>
<li>Enabling intelligent security protection on the ASUSTOR NAS.</li>
<li>Configuring firewall profiles and enabling the firewall on the ASUSTOR NAS.</li>
</ol>
 
<h4>PREREQUISITES</h4>
Course Prerequisites:
None
Students are expected to have a working knowledge of:
None
 
<h4>OUTLINE</h4>
<a href="#defend1">1. Introducing ADM Defender</a>
<a href="#defend2">2. Adding a Trusted List</a>
<a href="#defend3">3. Enabling Intelligent Security Protection</a>
<a href="#defend4">4. Enabling the Firewall</a>
<a href="#defend41">4.1 Managing Firewall Profiles</a>
<a href="#defend5">5. Additional notes</a>
 <hr /> 
<h4><a name="defend1"></a>1. Introducing ADM Defender</h4>
The all-new ADM Defender provides preset and customizable firewall profiles. Intelligent security protection can proactively prevent suspicious IP addresses from connecting to your NAS. ADM can also monitor network transmission packets to intercept suspicious network activities. The new design makes it easier to enable the firewall and additional security protections. ADM Defender proactively prevents suspicious connections, which can help further reduce the risks of malware and attacks to further improve data security.
 Introduced in ADM 5.0.
 
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910135830_ADM_Desktop.png" alt="" width="880" height="529" title="" align="" />
 
<h4><a name="defend2"></a>2. Adding a Trusted List</h4>
IP addresses specified in the trust list have the highest priority in allowing connections and will override addresses found in automatic blacklist.
 
<ul>
<li>Using your Web browser, log in to ADM using an administrator account.</li>
<li>Select [ADM Defender] [Trusted List].</li>
<li>Click [Add].</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910140819_ADM_Defender_trusted_list_s1.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>Select a different format to add a new trusted list.
<ul>
<li>IP address:
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910140903_ADM_Defender_trusted_list_s2.png" alt="" width="880" height="528" title="" align="" />
</li>
<li>IP range:
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910140932_ADM_Defender_trusted_list_s3.png" alt="" width="880" height="528" title="" align="" />
</li>
<li>Subnet mask:
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910140956_ADM_Defender_trusted_list_s4.png" alt="" width="880" height="528" title="" align="" />
</li>
</ul>
</li>
</ul>
 
<ul>
<li>Click Import to add multiple trusted lists using a csv file.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910141039_ADM_Defender_trusted_list_import.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>The IP addresses added to the trusted list will be allowed to connect to the ASUSTOR NAS.</li>
<li>A trusted list can be edited or removed here.</li>
<li>The trusted list can be exported as a .csv file for backing up the settings.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910141101_ADM_Defender_trusted_list_s5.png" alt="" width="880" height="528" title="" align="" />
 
<h4><a name="defend3"></a>3. Enabling Intelligent Security Protection</h4>
Enabling Intelligent security protection can proactively prevent suspicious IP addresses from connecting to your NAS.
 
 Automatic Blacklist: The automatic blacklist blocks IP addresses that make too many unsuccessful attempts to log in within a set amount of time.
<ul>
<li>Select [Intelligent Protection] [Automatic Blacklist].</li>
<li>Select [Enable automatic blacklist] and click on [Apply].</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910142548_ADM_Defender_auto_blacklist_s1.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>Click Import to add multiple blacklists using a csv file.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910142637_ADM_Defender_auto_blacklist_s2.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>Specific policies can be changed by administrators in Settings.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910142703_ADM_Defender_auto_blacklist_s3.png" alt="" width="880" height="528" title="" align="" />
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910142827_ADM_Defender_auto_blacklist_s3-1.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>IP addresses added to the blacklist automatically will be prohibited from connecting to the ASUSTOR NAS.</li>
<li>A blacklist can be removed here.</li>
<li>The blacklist can be exported as a .csv file for backing up the settings.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910142845_ADM_Defender_auto_blacklist_s4.png" alt="" width="880" height="528" title="" align="" />
 
 Risk Detection Greylist: When enabling risk IP detection, ADM will check the addresses of devices that attempt to connect to a NAS. IP addresses that are not in the automatic blacklist by the firewall and the trustlist are given a risk rating. By comparing addresses with the risk detection greylist stored on ADM, the AbuseIPDB online database, the existence of addresses already found in the ADM risk detection greylist, or addresses exceeding a specified risk value will be directly blocked, preventing login. The blocked IP will be directly added to the greylist. Before using this feature, please first sign up for an account at AbuseIPDB and obtain an API key. Click <a href="https://www.asustor.com/knowledge/detail?group_id=1023" target="_blank" rel="noopener">here</a> to view instructions. Individual accounts have a maximum checks or reports per day. To increase the number of checks and reports, a paid plan from AbuseIPDB is required.
 
<ul>
<li>Select [Intelligent Protection] [Risk Detection Greylist].</li>
<li>Select [Enable IP risk detection].</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910144146_ADM_Defender_risk_greylist_s1.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>Enter the API key obtained from the AbuseIPDB web site and click [Verify].</li>
<li>Select a risk value and click on [Apply].</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910144204_ADM_Defender_risk_greylist_s2.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>The period of time an IP address is blocked can be set in Settings. By default, a suspicious IP address will be permanently blocked. The minimum time an address can be blocked is seven days.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910144224_ADM_Defender_risk_greylist_s3.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>IP addresses added to the Risk Detection Greylist automatically will be prohibited from connecting to the ASUSTOR NAS.</li>
<li>A Risk Detection Greylist can be removed here.</li>
<li>The Risk Detection Greylist can be exported as a .csv file for backing up the settings.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910144237_ADM_Defender_risk_greylist_s4.png" alt="" width="880" height="528" title="" align="" />
 
<h4><a name="defend4"></a>4. Enabling the Firewall</h4>
Use the firewall to allow or deny IP addresses, entire ranges, and/or entire countries access to your NAS. ADM Defender provides Intranet only and location-restricted profiles that can be applied directly by default as well as the ability to add custom profile. Customized firewall profiles can be configured to protect all or specific network interfaces, ports and protocols. To ensure continued access when denying all connections to your NAS, ensure that your device IP addresses have been added to the allow list, otherwise all devices will be locked out.
 
 To define IP addresses by geolocation, the Geo IP Database app on App Central must be installed first.
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910171836_App_central_geoip_database.png" alt="" width="880" height="506" title="" align="" />
 
<ul>
<li>Select [Firewall] [General].</li>
<li>Select [Enable firewall].</li>
<li>Select a profile to activate, or add a new profile and click [Apply].</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910144846_ADM_Defender_firewall_s1.png" alt="" width="880" height="528" title="" align="" />
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910144910_ADM_Defender_firewall_s2.png" alt="" width="880" height="528" title="" align="" />
 
<a name="defend41"></a>4.1 Managing Firewall Profiles
 
<ul>
<li>Select [Firewall] [General].</li>
<li>Click [Add a new profile].</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910150134_ADM_Defender_firewall_s2-1.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>Select [Firewall] [Profile Management].</li>
<li>Click [Add].</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910150209_ADM_Defender_firewall_profile_s1.png" alt="" width="880" height="528" title="" align="" />
 
 Intranet only: ADM Defender provides Intranet only profile that can be applied directly by default. If you only allow connections to the NAS within your Intranet, you can enable this profile to deny all client devices outside of your Intranet from connecting to the NAS.
 
<ul>
<li>Select [Intranet only] and click [Apply].</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910150231_ADM_Defender_firewall_profile_s2.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>Click OK to enable the firewall and this profile.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910150253_ADM_Defender_firewall_profile_s3.png" alt="" width="880" height="528" title="" align="" />
 
 Location-restricted: ADM Defender provides location-restricted profile that can be applied directly by default. If you only allow connections to the NAS within your location, you can enable this profile to deny all client devices outside of your location from connecting to the NAS.
 
<ul>
<li>Select [Location-restricted] and click [Next].</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910150635_ADM_Defender_firewall_profile_s4.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>Please select a location where connections are permitted and click [Apply].</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910150710_ADM_Defender_firewall_profile_s5.png" alt="" width="880" height="528" title="" align="" />
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910150725_ADM_Defender_firewall_profile_s6.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>Confirm that the profile is active.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910150807_ADM_Defender_firewall_profile_s7.png" alt="" width="880" height="528" title="" align="" />
 
 Customization:
 
<ul>
<li>Select [Customization] and click [Apply].</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910150822_ADM_Defender_firewall_profile_s8.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>Enter a custom profile name.</li>
<li>Click [Add].</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910152432_ADM_Defender_firewall_profile_custom_s1.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>Select a network interface for the rule to allow or deny connections.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910152452_ADM_Defender_firewall_profile_custom_s2.png" alt="" width="880" height="528" title="" align="" />
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910152905_ADM_Defender_firewall_profile_custom_s5.png" alt="" width="600" height="426" title="" align="" />
 
<ul>
<li>Select a source IP address or geolocation.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910152803_ADM_Defender_firewall_profile_custom_s6.png" alt="" width="600" height="425" title="" align="" />
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910153014_ADM_Defender_firewall_profile_custom_s6-1.png" alt="" width="600" height="426" title="" align="" />
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910153030_ADM_Defender_firewall_profile_custom_s6-2.png" alt="" width="600" height="426" title="" align="" />
 
<ul>
<li>Select a restricted port.</li>
<li>Click OK to save the rule.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910153046_ADM_Defender_firewall_profile_custom_s7.png" alt="" width="600" height="426" title="" align="" />
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910153101_ADM_Defender_firewall_profile_custom_s7-1.png" alt="" width="600" height="426" title="" align="" />
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910153132_ADM_Defender_firewall_profile_custom_s7-2.png" alt="" width="600" height="426" title="" align="" />
 
<ul>
<li>Click OK to enable a custom profile.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910153542_ADM_Defender_firewall_profile_custom_s3.png" alt="" width="880" height="528" title="" align="" />
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910153559_ADM_Defender_firewall_profile_custom_s3-1.png" alt="" width="880" height="528" title="" align="" />
 
Default profiles are read only and cannot be modified. However, it can be copied to another profile and edited there.
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910153649_ADM_Defender_firewall_profile_manage.png" alt="" width="880" height="528" title="" align="" />
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910153724_ADM_Defender_firewall_profile_view.png" alt="" width="880" height="528" title="" align="" />
 
For example: Copy the original "Location-restricted" profile, edit and add another geolocation that is allowed to connect.
<ul>
<li>Select [Location-restricted] and click Copy.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910153649_ADM_Defender_firewall_profile_manage.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>Enter a custom profile name.</li>
<li>Select a geolocation rule and click Edit.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910153845_ADM_Defender_firewall_profile_copy_s1.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>Select other geolocations, click OK.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910153911_ADM_Defender_firewall_profile_copy_s2.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>After confirming the rules, click OK.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910153938_ADM_Defender_firewall_profile_copy_s3.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>You can remove inactive customized or modified profiles here.</li>
<li>Firewall profiles can be exported as a JSON file for backup purposes.</li>
<li>Click Import to create a new firewall profile using a JSON file.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910154249_ADM_Defender_firewall_profile_copy_s4.png" alt="" width="880" height="528" title="" align="" />
 
<h4><a name="defend5"></a>5. Additional notes</h4>
<ul>
<li>Packet Logs: Intercepted packets will be recorded here after enabling the Automatic Blacklist, Risk Detection Greylist or Firewall.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910154856_ADM_Defender_packet_log.png" alt="" width="880" height="528" title="" align="" />
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910154910_ADM_Defender_packet_log_1.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>Packet Capture:
<ul>
<li>When enabling Automatic Packet Capture, your NAS will automatically capture packets after the specified amount has been intercepted in intervals of the specified capture duration.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910154946_ADM_Defender_packet_capture_s1.png" alt="" width="880" height="528" title="" align="" />
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910155005_ADM_Defender_packet_capture_s2.png" alt="" width="880" height="528" title="" align="" />
 
<ul>
<li>Packets can be manually captured at any time.</li>
</ul>
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910155022_ADM_Defender_packet_capture_s3.png" alt="" width="880" height="528" title="" align="" />
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910155041_ADM_Defender_packet_capture_s4.png" alt="" width="880" height="528" title="" align="" />
</li>
</ul>
 
Captured packet data can be downloaded as PCAP or TXT files for deeper analysis of network attack behavior.
 You must install other software that supports PCAP files to open these files, such as WireShark or NetworkMiner.
<img src="https://www.asustor.com/images/tinymce/upload_img_20250910171302_Wireshark_screen.png" alt="" width="900" height="483" title="" align="" />

Publish: