Hi, I don't want to do it through the gui because it takes a lot of time, starting a browser, log in, navigate to the right page, select the right rule, click on 'active', scroll down, click on 'apply'.
When it is set up in my Home Automation, I can open the app that I use a lot anyway, and just tab a switch.
Or I can just say: 'Computer, stop internet of xyz!'.
Ok, the last part is possible, but I don't have that installed yet. .
Finally I got some time to test the above. Unfortunately it doesn't seem to work.
When I issue 'iptables -vnL FORWARD', I get the table with lots lines.
When I type:
iptables -I FORWARD 1 -i `nvram get lan_ifname` -m mac --mac-source 4C:DD:31:90:D4:D1 -j REJECT
This is accepted, but 'iptables -vnL FORWARD' doesn't show any line with the mac address.
Also, the phone I am testing this with, is still connected to the internet through the router.
I tried 'su'and 'sudo' but this is not accepted.
Am I doing something wrong?
So I am struggling to understand why this is not working... have you tried individual parts of it? The do look at the very first line because the 1 after the FORWARD means it is the very first forward rule. I do suggest changing from REJECT to ACCEPT just to make sure that you do not remove access.
So I am struggling to understand why this is not working...
I really appriciate that.
To answer the rest of your question: no I don't know how to investigate further. And because I now have a working way of setting a access rule active or inactive, this suits my needs! There isn't a reason for me to dig deeper anymore.
On the other thread, there is an even simpler way suggested. I will try that next weekend.