How to only allow one PC access and only hard wired to DDWRT

Post new topic   Reply to topic    DD-WRT Forum Index -> Advanced Networking
Author Message
IMV8N
DD-WRT Novice


Joined: 19 Apr 2022
Posts: 12

PostPosted: Sat May 28, 2022 16:25    Post subject: How to only allow one PC access and only hard wired to DDWRT Reply with quote
I would like to lock down my R9000 so that only my primary PC can access DDWRT and only with a hard wired connection? I have been tinkering and making changes based on forum threads but I keep coming up empty. Can I get some direction please?
Sponsor
the-joker
DD-WRT Developer/Maintainer


Joined: 31 Jul 2021
Posts: 2146
Location: All over YOUR webs

PostPosted: Sat May 28, 2022 16:46    Post subject: Reply with quote
Turn left into the Wireless and Basic Settings tab look up for the option Wireless GUI Access and disable it for both radios.

Then continue going towards Administration tab (avenue) and On the Management tab (office)
Look for the Remote Access (cafe/bar) and disable all of it.

Then Apply your settings and take the next bus home.

However note if you have more wired machines attached to router they all can access the GUI. For that part, I'll let you go out into the world and learn for yourself, youre a big boy and can read and write no other requisites needed.

_________________
Saving your retinas from the burn!🔥
DD-WRT Inspired themes for routers
DD-WRT Inspired themes for the phpBB Forum
DD-WRT Inspired themes for the SVN Trac & FTP site
Join in for a chat @ #style_it_themes_public:matrix.org or #style_it_themes:discord

DD-WRT UI Themes Bug Reporting and Discussion thread

Router: ANus RT-AC68U E1 (recognized as C1)
egc
DD-WRT Guru


Joined: 18 Mar 2014
Posts: 12836
Location: Netherlands

PostPosted: Sat May 28, 2022 17:45    Post subject: Reply with quote
Moved this to the Advanced networking, see the forum guidelines with helpful pointers:
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087


Below an example of how this can work, test from CLI and if it is working add to Administration/Commands and Save Firewall.
Make sure to make a backup before, you can lock your self out if you make a mistake.
I have not tested this and it is on the top of my head so could be wrong!

Code:
GUEST_IF="br0"
ALLOWEDIP="IP address of the client which is allowed"
 
PORT_DHCP="67"
PORT_DNS="53"
 
# limit guests to essential router services (icmp, dns, dhcp)
iptables -I INPUT -i $GUEST_IF ! -s  $ALLOWEDIP -j REJECT
iptables -I INPUT -p icmp -i $GUEST_IF -j ACCEPT
iptables -I INPUT -p udp  -i $GUEST_IF --dport $PORT_DHCP -j ACCEPT
iptables -I INPUT -p tcp  -i $GUEST_IF --dport $PORT_DNS  -j ACCEPT
iptables -I INPUT -p udp  -i $GUEST_IF --dport $PORT_DNS  -j ACCEPT


Also see:
https://wiki.dd-wrt.com/wiki/index.php/Iptables_command

_________________
Routers:Netgear R7000, R6400v1, R6400v2, EA6900 (XvortexCFE), E2000, E1200v1, WRT54GS v1.
Install guide R6400v2, R6700v3,XR300:https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=316399
Install guide R7800/XR500: https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=320614
Forum Guide Lines (important read):https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=324087
Display posts from previous:    Page 1 of 1
Post new topic   Reply to topic    DD-WRT Forum Index -> Advanced Networking All times are GMT

Navigation

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You cannot download files in this forum