Recent content by deviceunifier

It is, I'd prefer to isolate the IoT devices as much a possible, adding the iptables rules has been the solution for me. This may help others though.

It works!

Interesting, I will see what I can find. I only want certain clients to have traffic to specific IP addresses, so perhaps something like: iptables -I FORWARD -i br52 -s 192.168.2.50 -o br0 -d 192.168.1.50 -j ACCEPT I'm not sure if that is the correct format though, I'll give it a go and report...

That's a good suggestion and one I will fall back on. I happen to have a spare Pi so I will attempt some trial and error first. Do you know if creating a back up config of the router will store the new iptables entries?

I did come across this thread whilst trying searching for a solution. My server is a repurposed workstation and only has one networking port. I also think I would run into the same issues doing that as I would running HA on a dedicated machine on the IoT network. Was I wrong in my iptables...

UPDATE: Inter-VLAN connectivity is possible by introducing new iptables rules. This was quite simple and has been working well. However, the new rules aren't persistent, they get wiped and have to be added again every time the router reboots or is turned off. Including the refresh it does after...