Recent content by Dypek

#!/bin/sh # block <MAC ADDRESS> iptables -t filter -I FORWARD -m mac --mac-source <MAC ADDRESS> -j DROP file is here: /jffs/scripts/firewall-start https://github.com/RMerl/asuswrt-merlin.ng/wiki/User-scripts#firewall-start

I was able to reproduce this by turning PC off in the browser interface, my MAC that I had just previously added to the DROP policy via command line (same as what your cron would do) disappeared after toggling to off, however all my MACs that I have setup in firewall-start are still there, so...

I must have accidentally had both nat-start and firewall-start running the same set of rules when I was testing this, you are correct, with the rules in firewall-start only, I have my DROP rules prepended to the PC rules in the FORWARD chain, thanks for your help.

I am using Asuswrt-Merlin on an ASUS RT-AC3100 (previously on an RT-N66U), and am trying to setup iptables rules to block outbound access to specific MACs or IPs (smart plugs, smart switches, cameras, etc). I have iptables rules in nat-start, which are applied properly on startup, I can see my...