Menu
What's new
By:
Filters Better Search

firewall-start question/help

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Z

zero65

New Around Here
1st of all want to say great firmware! I am using 3.0.0.4.374.37_1-sdk5-oldusb and all is good. I am trying to lock down my network a bit more but can't figure what I am doing wrong.

created firewall-start and it runs... with following:

#!/bin/sh
#############
# Firewalling
#############
iptables -A FORWARD -p ALL -i br0 -o eth0 -m iprange --src-range 192.168.2.2-192.168.2.111 -j DROP


When I do iptables -L and iptables-save c I can see that my entry gets added. However if change my pc ipaddress to any of these ip addresses say 192.168.2.3 none of my access is restricted. I have looked at iptables man and it looks correct. I just cant quite see what I did wrong. Any help will be appreciated!

Thx
 
zero65 said:
1st of all want to say great firmware! I am using 3.0.0.4.374.37_1-sdk5-oldusb and all is good. I am trying to lock down my network a bit more but can't figure what I am doing wrong.

created firewall-start and it runs... with following:

#!/bin/sh
#############
# Firewalling
#############
iptables -A FORWARD -p ALL -i br0 -o eth0 -m iprange --src-range 192.168.2.2-192.168.2.111 -j DROP


When I do iptables -L and iptables-save c I can see that my entry gets added. However if change my pc ipaddress to any of these ip addresses say 192.168.2.3 none of my access is restricted. I have looked at iptables man and it looks correct. I just cant quite see what I did wrong. Any help will be appreciated!

Thx
Click to expand...

You are appending the rule, which probably means your traffic got allowed in by a previous rule.

Try using -I instead of -A, so it will be inserted at the top of the chain.
 
You must log in or register to reply here.

Similar threads

R
Script to detect backup wan and disable certain devices from internet access
Replies
0
Views
654
RandomUser777
R
M
Advance firewall rules
Replies
5
Views
640
ZebMcKayhan
Z
S
VLAN Setup for IoT Devices
Replies
19
Views
4K
drinkingbird
drinkingbird
P
Asus aimesh node disconnects frequently, corresponding log entries recorded. Need help understanding the log.
Replies
5
Views
269
ColinTaylor
C
R
One router, two segments desired.
Replies
4
Views
725
Rombo
R
Similar threads
Thread starter Title Forum Replies Date
H Does firewall-start Script Ever Run Twice With Same iptables Rules? Asuswrt-Merlin 13
K Asus router as adblock/firewall server (but not acting as a router) between modem and mesh routers Asuswrt-Merlin 7
M wan dhcpv6 blocked by firewall Asuswrt-Merlin 2
L is enabling firewall necessary (same for upnp) when on a provider with cgnat? Asuswrt-Merlin 5
M Advance firewall rules Asuswrt-Merlin 5
fffddd URL filtering in the firewall does not take effect Asuswrt-Merlin 7
G Feature request: firewall url filter log Asuswrt-Merlin 0
B Firewall lan - vpn? Asuswrt-Merlin 0
John Tetreault How to open ipv6 firewall to a port on the router? Asuswrt-Merlin 4
C Port Forwarding and Firewall - not working as I expect Asuswrt-Merlin 4

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 1,044 (members: 13, guests: 1,031)
Top