I've got a Linksys WRT1900ACS router. Apart from its great performance, it lacks some security features. My main concern for now is that its firmware doesn't have an option to block ports for incoming connections. There are some complains on this topic at Linksys forum: https://community.linksys.com/t5/Wireless-Routers/WRT1900AC-port-block/td-p/898489 I scanned the router from the Internet side with nmap and discovered that there are ports 80, 443 and 8080 open and I would like them to be closed.
In the above thread someone posted an idea to forward wanted-to-be-closed ports to some fake local address, but I wonder whether it would be safe? Would it be an improvement at all?
I know I could install OpenWRT, but I would like to avoid it if possible.