Separating IPs within a network

Post new topic   Reply to topic    DD-WRT Forum Index -> General Questions
View previous topic :: View next topic  
Author Message
securedparty
DD-WRT Novice


Joined: 07 Dec 2017
Posts: 22
PostPosted: Tue Dec 11, 2018 14:37    Post subject: Separating IPs within a network Reply with quote
I have seen close to what I was thinking of doing, but nothing quite seems to match up.

What I am looking to do is, possibly with IP tables in the firewall, to keep a range of IP addresses from communicating with every other device on the network except for the gateway router with NAS attached. I want all devices on the network to still be able to access the NAS on the gateway router.

So, basically, any "Smart" device I don't want talking to any other device except the router. (They're fine on their own, but when they get together, I think they're talking about me... right? LOL)

I've got them in DHCP'd to a IPv4 range of 192-199.

All devices are wired.

Can such a thing be done, with the IP range provided, through IP tables and the firewall?

I don't know how easily setting up VLANS would be, if it depends on hardwired ports.

Any thoughts, ideas?
Back to top View user's profile Send private message
Sponsor
Alozaros
DD-WRT Guru


Joined: 16 Nov 2015
Posts: 6437
Location: UK, London, just across the river..
PostPosted: Tue Dec 11, 2018 15:33    Post subject: Reply with quote
its always like that with your router and that build you are running... Laughing

also you can separate your network with vlans but cannot limit LAN to LAN communication with iptables rules as the firewall works WAN to LAN only...
you better isolate either with vlans or another router
i ve found that with another router was more flexible for me in the past but its one more device case....
_________________
Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
Back to top View user's profile Send private message
securedparty
DD-WRT Novice


Joined: 07 Dec 2017
Posts: 22
PostPosted: Tue Dec 11, 2018 18:00    Post subject: Reply with quote
Alozaros wrote:
its always like that with your router and that build you are running... Laughing

also you can separate your network with vlans but cannot limit LAN to LAN communication with iptables rules as the firewall works WAN to LAN only...
you better isolate either with vlans or another router
i ve found that with another router was more flexible for me in the past but its one more device case....


Dang. Hmm, well, shoot. Thanks for the reply!
Back to top View user's profile Send private message
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Index -> General Questions All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum