Menu
What's new
By:
Filters Better Search

Solved Help blocking incoming traffic

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

macster2075

macster2075

Very Senior Member
Trying to block incoming traffic only to one of my IP cameras.
So far I have tried

iptables -I INPUT -s 192.168.1.126 -j DROP

but, that doesn't seem to work.
Is this correct?

Thanks.
 
So you've got a port forwarding rule for 192.168.1.126? Try using the FORWARD chain rather than INPUT.
 
Block Internet access doesn't work?

1694643919743.png
 
Tech9 said:
Block Internet access doesn't work?
Click to expand...
That blocks internet access altogether. I only need to block incoming traffic to this camera.
When internet access is blocked...it starts disconnecting/reconnecting every few minutes...very annoying.

It only stops doing that when I enable internet access. I am trying to test if the issue is gone by blocking incoming connection only.. just a test.
 
ColinTaylor said:
Then there's no point using your iptables command because there is no "incoming traffic from outside network".
Click to expand...
Maybe I am not explaining what I meant. When I am outside my network, I can access this camera via its app.
I would like to NOT be able to do that from outside my network and only have access to it when I am inside my network.

Does that make sense? Not sure If I am using the correct term here.
 
Then you'll have to explain to us how, technically the app is accessing the camera. Without knowing that we don't know what we're meant to be blocking.
 
Is your camera using UPnP to forward ports perhaps? You can check on the router at System Log - Port Forwarding.
 
Last edited:
ColinTaylor said:
Is your camera using UPnP to forward ports perhaps? You can check on the router at System Log - Port Forwarding.
Click to expand...
1694648608997.png


On the Connections tab, I see the camera there and I can see an external destination IP.
Does that mean that IP is where the camera is trying to connect to?
 
The app is probably negotiating thru the camera company's web services. If you know their IP address(es) and/or any special ports it uses, I'd think you could use one of these to accomplish your goal:
- network services filter
- URL filter
- or port-forwarding (into a black hole), this can also specify a remote IP
 
macster2075 said:
On the Connections tab, I see the camera there and I can see an external destination IP.
Does that mean that IP is where the camera is trying to connect to?
Click to expand...
As the previous poster said, it's likely using the company's servers as an access proxy. You could block that connection but that's effectively what you've already tried that created disconnecting/reconnecting problems for you. It might work if the disconnecting/reconnecting was caused by a lack of connectivity to DNS rather than the company server.
 
My concern is that this company called WYZE are known for dialing home (China). They say they don't do that anymore, but I just don't trust them.

So when I disable internet access, I can view them while inside my network, but every few minutes the screen says disconnected, but then it reconnects right away.. it does it all day every few minutes when internet access is disabled.

As soon as I enable internet access, it stops doing that 🤷‍♂️

I want to make sure no rogue employee from that company is able to access the camera.
Until I can get a different brand, I am trying to circumvent whatever is trying to do when no internet is available.

It's like it knows there's not internet access and it starts doing this.
 
You must log in or register to reply here.

Similar threads

SkierInAvon
Asus Merlin - iptables command (not working?)
Replies
8
Views
572
SkierInAvon
SkierInAvon
TanyaC
cannot add domain to router URL filter
Replies
15
Views
522
TanyaC
TanyaC
R
Script to detect backup wan and disable certain devices from internet access
Replies
0
Views
344
RandomUser777
R
H
Solved xbox one not able to sign in when connected through router running asuswrt-merlin on an rt-ac5300.
Replies
5
Views
303
Squall Leonhart
Squall Leonhart
PaulA
Port isolation on RT-AX88U-Pro (router) w/ Merlin w/ Tagged internet ISP
Replies
1
Views
297
PaulA
PaulA
Similar threads
Thread starter Title Forum Replies Date
C Solved Need help with nat-start scripts Asuswrt-Merlin 3
G Need help with VPN Asuswrt-Merlin 2
P Help with traffic filtering Asuswrt-Merlin 0
C Need some help with a DHCP problem Asuswrt-Merlin 9
S Help Required AC68U (TM-AC1900) troubleshooting after power outage Asuswrt-Merlin 3
C Need help with GT-AXE11000 and DNS Director Asuswrt-Merlin 0
Spydawg need help with network loop. Asuswrt-Merlin 9
J Help - duckdns has started returning an IPv6 IP address Asuswrt-Merlin 1
A Help Required Upgrading AC68U from Stock FW to Merlin Please? Asuswrt-Merlin 15
F ASUS RT-AC86U (merlin Current Version : 386.12_6): jffs2: Argh. No free space left for GC. Can you help me troubleshoot this please? Asuswrt-Merlin 6

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 990 (members: 24, guests: 966)
Top