What's new

What firewall setting if any should I add/change for bridge1

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

jea101

Regular Contributor
RT-AC66W (U)

Merlin 378.56_2 firmware

I created vlan3 and br1

I added vlan3 to br1

I assigned IPv4 and IPv6 addresses to br1

I enabled router advertisement br1

My current firewall start script

Code:
#!/bin/sh
touch /tmp/000fwstarted
iptables -I INPUT -i br1 -j ACCEPT
iptables -I FORWARD -i br1 -j ACCEPT
ip6tables -I INPUT -i br1 -j ACCEPT
ip6tables -I FORWARD -i br1 -j ACCEPT
exit
#

My current service start script

Code:
#!/bin/sh
# touch /tmp/000brstarted
# add vlan 3 to eth0
vconfig add eth0 3
ifconfig vlan3 up
# add vlan 3 to br1
brctl addbr br1
brctl addif br1 vlan3
ip -4 addr add 192.168.zzz.1/24 dev br1
ip -6 addr add 2001:470:xxxx:yyyy::1/64 dev br1
ifconfig br1 up
# move ports 2 and 3 to vlan3
robocfg vlan 1 ports "1 4 8t"
robocfg vlan 3 ports "2 3 8t"
exit
#

My current dnsmasq.conf.add

Code:
interface=br1
dhcp-range=br1,::,constructor:br1,ra-stateless,64,7200s
dhcp-option=br1,option6:dns-server,[2001:470:xxxx:yyyy::251],[2001:470:xxxx:yyyy::252],[2001:470:xxxx:yyyy::1]
admin@RT-AC66W-B518:/jffs/configs# cd ../scripts

With my current settings I pass this Ipv6 firewall test for PCs on either br0 or br1.


http://www6.chappell-family.co.uk/cgi-bin6/ipscan-fast-txt.cgi


Windows PCs on br0 respond to the tests IPv6 ping

PCs on br1 don’t respond to the tests IPv6 ping
 
Last edited:

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!
Top