For the latest on our response to Coronavirus (COVID-19), click here.



2 Messages

Wed, Dec 19, 2018 3:16 PM

Blocking outgoing traffic from specific static IP addresses (5268AC FXN router)

I just had AT&T gigabit fiber installed last week.  I have several PoE security cameras configured with static IP addresses that feed video into a Mac running SecuritySpy that serves as my security interface / video storage device.  I've had no problem configuring the firewall on the 5268AC FXN router provided by AT&T to allow me to access my security system through my Mac.


I do not open the firewall for individual cameras, so incoming attempts to access them are not an issue.  My concern is that some of my cameras will attempt to "phone home" out of the box with an outbound connection to the Internet without my knowledge.  I have considered configuring a VLAN for the cameras by purchasing a managed switch, but it occurs to me that a simpler solution might be to restrict certain internal IP addresses from any outbound connections outside of my network.  So (for example), a camera with static IP address can only communicate with other addresses within my home network,  but the 5268AC FXN would block any packets attempting to go out to the Internet.  This would not be a perfect solution, of course, as I would be blocking all of my cameras from accessing the NIST time server, but that is something that can be worked around if needed.


So ... is this something that can be done with the 5268AC FXN router?  Or should I bite the bullet and buy a managed switch for a VLAN?


Accepted Solution

Official Solution

Brand User



112.2K Messages

a year ago

Hello @wtimothyholman

We understand you have a question about blocking outgoing traffic.

Check out this page here that explains how static IP addresses work and what can be done.

Charles, AT&T Community Specialist

Still need help? Ask a question! Our 1.4 million members typically respond within 1 hour.

*I am an AT&T employee, and the postings on this site are my own and don't necessarily represent AT&T's position, strategies or opinions.



2 Messages

a year ago

Excuse me?  Pointing me to a web page that explains what static IP addresses are is NOT a "solution" to my question.  The "solution", as it turned out, was to go ahead and buy a managed switch, which I should have done in the first place.


Seriously, if scanning a message for phrases like "static IP address" and posting canned replies without even bothering to read the customer's question is the best that AT&T can do, it doesn't give me much confidence in the long term for the quality of my service.


Associated Member


33 Messages

a year ago

You should be able to outgoing traffic from specific IP addresses in the Gateway's firewall settings.

*I am a trusted partner that is associated with AT&T, and the postings on this site are my own and don't necessarily represent AT&T's position, strategies or opinions.
AT&T TV – All Your Entertainment In One Spot.  Learn more…