Menu
What's new
By:
Filters Better Search

ping device in Guest wifi with "Access Intranet" disabled

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

przemekwawa

przemekwawa

Regular Contributor
Hi,
I need to disable access to intranet for guest devices, but for one of them I need to have ability to ping it from LAN.
I tried:
ebtables -t filter -I FORWARD -p IPv4 -d GUEST_DEVICE_MAC --ip-proto icmp -j ACCEPT
ebtables -t filter -I FORWARD -p IPv4 -s GUEST_DEVICE_MAC --ip-proto icmp -j ACCEPT

but it does not work, I still can't ping it from LAN... could you help/direct me?
 
I tried also Yazfi version of guest wifi, but does not suit my situation - I need to have assigned using DHCP specific IP adresses for devices in "Guest" wifi.
 
Go into network tools on the router and run the PING from there. Pinged devices will respond to the router even if they are on the Guest network with access to Intranet blocked.
 
CaptainSTX said:
Go into network tools on the router and run the PING from there. Pinged devices will respond to the router even if they are on the Guest network with access to Intranet blocked.
Click to expand...
I know that, it works. But i need to Ping from specific LAN device to specific guest device and get proper response. Opposit is not needed btw.
 
I need to disable access to intranet for guest devices, but for one of them I need to have ability to ping it from LAN (from specific LAN device to specific guest device).
I tried without success (no counters are changing):
ebtables -t filter -I FORWARD -p IPv4 -d GUEST_DEVICE_MAC --ip-proto icmp -j ACCEPT
ebtables -t filter -I FORWARD -p IPv4 -s GUEST_DEVICE_MAC --ip-proto icmp -j ACCEPT

So I checked
-p ARP -o wl0.1 -j ACCEPT
-p ARP -i wl0.1 -j ACCEPT

and it works. But then devices from guest can ping and even connect to LAN, so it makes no sense.

Any ideas how to achieve that? I tried also YazFi solution, but there is no possibility to assign static dhcp for guest users.
 
Last edited by a moderator:
przemekwawa said:
I created similar post on another subforum, but I get no answer, so maybe someone here would be helpfull.

I need to disable access to intranet for guest devices, but for one of them I need to have ability to ping it from LAN (from specific LAN device to specific guest device).
I tried without success (no counters are changing):
ebtables -t filter -I FORWARD -p IPv4 -d GUEST_DEVICE_MAC --ip-proto icmp -j ACCEPT
ebtables -t filter -I FORWARD -p IPv4 -s GUEST_DEVICE_MAC --ip-proto icmp -j ACCEPT

So I checked
-p ARP -o wl0.1 -j ACCEPT
-p ARP -i wl0.1 -j ACCEPT

and it works. But then devices from guest can ping and even connect to LAN, so it makes no sense.

Any ideas how to achieve that? I tried also YazFi solution, but there is no possibility to assign static dhcp for guest users.
Click to expand...
You can use YazFi to handle the firewall and heavy lifting, then edit dnsmasq.conf.add to assign IPs for your guest devices
 
You must log in or register to reply here.

Similar threads

R
Script to detect backup wan and disable certain devices from internet access
Replies
0
Views
333
RandomUser777
R
bengalih
Guest Wifi changes pre/post 386.x FW
Replies
15
Views
950
L&LD
L&LD
NoBenefit
Does my iptables looks normal?
Replies
1
Views
630
ColinTaylor
C
D
Guest network with intranet access v. using the main network
Replies
4
Views
463
ColinTaylor
C
GShlomi
Sharing my DualWan with port forwarding and DDNS experience
Replies
0
Views
134
GShlomi
GShlomi
Similar threads
Thread starter Title Forum Replies Date
S Cannot ping/skynet will not work while Firewall is Enabled. Asuswrt-Merlin 2
A RTAC68U Fw386.12 Openvpn ping packet loss Asuswrt-Merlin 0
B Ethernet Cable Questions - Jitter / Ping - Professional opinion needed please. Asuswrt-Merlin 12
R Ping issue Asuswrt-Merlin 3
poolbeetse7en Possible DNS and/or Routing Issue Ping/Latency Slow Asuswrt-Merlin 12
S Strange wired device? Asuswrt-Merlin 1
S Transfer files to another device (raspi) in the same network Asuswrt-Merlin 3
D Solved Windows doesn't resolve Android device hostnames? Asuswrt-Merlin 11
L dose old device like ax86u will update to 3006? Asuswrt-Merlin 1
A More detailed USB storage device hardware info? Asuswrt-Merlin 2

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 954 (members: 33, guests: 921)
Top