Menu
What's new
By:
Filters Better Search

Asus merlin: How to block communication between two device on the network?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

S

sudodavi

New Around Here
Hi :)

I am using Asus Merlin 3004.388.5.
on my WiFi I have two device
1. Macbook
2. iPhone

I would like to block communication between the 2 devices, they cannot be discoverable by each other.
But I have other devices on my network which has to discover my iPhone, e.g: AppleTV.
I don't wanna use Guest network or a separate wifi network on any way

Any idea?

Thanks!
 
Last edited:
sudodavi said:
I don't wanna use Guest network or a separate wifi network on any way

Any idea?
Click to expand...
Maybe some sort of IPTables rule would do it to block communication with each other. No idea if actually possible.
I know you said no Guest Network, but if you did choose to use Guest Network, its possible using YazFi (if not using AiMesh) that you might be able to accomplish what you seek by enabling YazFi's Two Way to Guest then using custom scripting to configure the firewall to block two specific IP addresses from communicating with each other. Example, something like the following with YazFi:
Code: 
#!/bin/sh
iptables -I YazFiFORWARD -i wl0.1 -o br0 -s 192.168.3.50 -d 192.168.1.100 -j DROP
iptables -I YazFiFORWARD -i br0 -o wl0.1 -s 192.168.1.100 -d 192.168.3.50 -j DROP
Probably would take some experimenting to get the right code.
 
bennor said:
Maybe some sort of IPTables rule would do it to block communication with each other. No idea if actually possible.
I know you said no Guest Network, but if you did choose to use Guest Network, its possible using YazFi (if not using AiMesh) that you might be able to accomplish what you seek by enabling YazFi's Two Way to Guest then using custom scripting to configure the firewall to block two specific IP addresses from communicating with each other. Example, something like the following with YazFi:
Code: 
#!/bin/sh
iptables -I YazFiFORWARD -i wl0.1 -o br0 -s 192.168.3.50 -d 192.168.1.100 -j DROP
iptables -I YazFiFORWARD -i br0 -o wl0.1 -s 192.168.1.100 -d 192.168.3.50 -j DROP
Probably would take some experimenting to get the right code.
Click to expand...
Thanks, good idea, I will try it
 
sfx2000 said:
That might help with IPv4, but IPv6 link-local might still come into play between the two devices...
Click to expand...

Should also note that Bonjour/Rendezvous is IPv6 native, even on a network that doesn't support IPv6 on the router, and that AWDL might try to do direct point-to-point (AWDL is what AirPlay uses).
 
glens said:
The question itself is interesting enough, but even /more/ interesting would be the "why" of it?
Click to expand...
The reason is that I am an iOS mobile engineer, and Apple started something under the hood... Many people rumor is that in the next upcoming years they will have portless iPhones. And the first step appeared this year, if your Mac and the iPhone is on the same network then Xcode (IDE) wont built via cable (even if you attached the phone via cable to the mac) and you cannot change it manually, in the past years it was possible but not anymore.
But if the Mac / iPhone is not seeing each other then Xcode will fall-back to install / debug the app via cable.
The problem is to install / debug an application via network is really really slow. And I dont mind to do it via network but is slowing down my work, and Apple didnt publish anything about it, what can we do to speed up this... just silently introduced this and leave the devs alone. So the only workaround would be to me to block somehow the communication between the 2 device, and then Xcode will always debug via cable (which is fast and working well)
 
Wow, and thanks for sharing. (I hate it when folks who don't even know me know that they know better than me how I might want to use something.)
 
Apple, when you can't have your cake or eat it the way you want it too. :rolleyes:
 
sudodavi said:
The reason is that I am an iOS mobile engineer, and Apple started something under the hood... Many people rumor is that in the next upcoming years they will have portless iPhones. And the first step appeared this year, if your Mac and the iPhone is on the same network then Xcode (IDE) wont built via cable (even if you attached the phone via cable to the mac) and you cannot change it manually, in the past years it was possible but not anymore.
Click to expand...

Looking at Xcode 15.2 - go to Window -> Devices and Simulators - you should still see the checkbox for debug over network... and on my install, the checkbox is not greyed out, so it can be selected on/off..

My Mac is running MacOS 14.3, iPhone iOS 17.3, and both are on the same network - I can check/uncheck the debug over network... Have you tried removing the device and adding it back it - Xcode can be pretty fiddly about this, as you likely know first hand...
 
L&LD said:
Apple, when you can't have your cake or eat it the way you want it too. :rolleyes:
Click to expand...

Development environments are all a pain.

Xcode isn't that much different than what one sees with Android Studio or the MS environments - they all suck :D
 
sfx2000 said:
Looking at Xcode 15.2 - go to Window -> Devices and Simulators - you should still see the checkbox for debug over network... and on my install, the checkbox is not greyed out, so it can be selected on/off..

My Mac is running MacOS 14.3, iPhone iOS 17.3, and both are on the same network - I can check/uncheck the debug over network... Have you tried removing the device and adding it back it - Xcode can be pretty fiddly about this, as you likely know first hand...
Click to expand...
its possible that this tick is enabled but it's depending on the device and the iOS version. all of my team members has the same thing (>10 iOS devs, disabled tick for this option).
thanks for the advice but I think here we should not focus on xcode, there are other forums for this. I wrote here to solve the problem on my router :) lets leave this forum / thread for asus routers.
 
You must log in or register to reply here.

Similar threads

theirongiant
AX88U Pro (3004.388.5) suddenly rebooted mid-day. Last manual reboot was a few days ago.
Replies
0
Views
163
theirongiant
theirongiant
R
mDNS repeater with guest network/vlan
Replies
3
Views
1K
robca
R
G
Too many devices. How to increase 2.4Ghz devices? AiMesh?
Replies
5
Views
249
Grefyne
G
I
Router have connectivity but client doesn't
Replies
1
Views
290
iTheMask
I
S
Network printer no longer available after activating Guest networks
Replies
18
Views
496
Tech9
Tech9
Similar threads
Thread starter Title Forum Replies Date
Z Solved Accidentally flashed XT12 latest merlin on a ET12 Asus Zenwifi Pro. Can't flash back stock FW. Asuswrt-Merlin 11
T Asus RT-AX86U vs RT-AX68U (with Merlin cake SQM) Asuswrt-Merlin 9
Coldblackice Does ASUS Merlin's QoS consider DSCP? Asuswrt-Merlin 6
JA93 iVentoy on Asus Merlin Asuswrt-Merlin 1
M [🙏 Feature request For Asus Merlin] Add Public WiFi Mode for GT-AX11000 Asuswrt-Merlin 7
A Asus Merlin 388.6_2 VPN-Director Asuswrt-Merlin 5
D Asus XT8 HW1 & HW2 Asus-wrt Merlin GNUton Asuswrt-Merlin 1
C Where to Download GNUton's Asus Merlin For DSL-AC68U Asuswrt-Merlin 5
dbaser ASUS RT-AC68U not working after Merlin firmware update, did I brick it? Asuswrt-Merlin 15
F ASUS RT-AC86U (merlin Current Version : 386.12_6): jffs2: Argh. No free space left for GC. Can you help me troubleshoot this please? Asuswrt-Merlin 6

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 923 (members: 23, guests: 900)
Top