What's new

Confirm AC1200G+ Guest network "access intranet" possible vulnerability (2.4GHz)

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!


New Around Here

Anyone can confirm that setting "access intranet" disabled for Guest Network on AC1200G+ is not working (2.4GHz)?
It is possible to see all other devices on the network. This doesn't happen with 5GHz Guest network.

Stock Firmware:
Mode: Wireless router mode (Default) - It's NOT in AP mode

Same ebtables rules (created automatically):
Bridge table: filter

Bridge chain: INPUT, entries: 0, policy: ACCEPT

Bridge chain: FORWARD, entries: 4, policy: ACCEPT
-i wl0.1 -j DROP
-o wl0.1 -j DROP
-i wl1.1 -j DROP
-o wl1.1 -j DROP

Bridge chain: OUTPUT, entries: 0, policy: ACCEPT

Bridge table: broute

Bridge chain: BROUTING, entries: 6, policy: ACCEPT
-p IPv4 -i wl0.1 --ip-dst --ip-proto icmp -j ACCEPT
-p IPv4 -i wl0.1 --ip-dst --ip-proto icmp -j DROP
-p IPv4 -i wl0.1 --ip-dst --ip-proto tcp -j DROP
-p IPv4 -i wl1.1 --ip-dst --ip-proto icmp -j ACCEPT
-p IPv4 -i wl1.1 --ip-dst --ip-proto icmp -j DROP
-p IPv4 -i wl1.1 --ip-dst --ip-proto tcp -j DROP

Rules seem to be working for wl1.1 (5Ghz) but having no effect for wl0.1 ((2.4GHz)

I would really appreciate if anyone can confirm this. Thank you.

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!