[ctempleton3]

I have just installed the optional mDNSResponder OpenWRT package onto my WRT54G-TM router running dd-wrt.v24-11218_NEWD_mega.bin. I want to ensure that mDNSResponder will not it will not advertise my services upstream to the internet. How do I create a firewal rule (iptables) to block the mDNSResponder process from accesing the vlan1 interface? Also, how do I set these chanes to be stored so they will reload after reboot? Should I save them in the nvram or in a script on the /jffs partiton and call it in rc_startup?

I know that I can disable multicast on the vlan1 interface and it would fix the problem. What is the downside of this? I am not exactly sure if I need Multicast enabled on the WAN interface.

-Charles III

[fl]

Well, unless I'm confused, it should just be a matter of using the -i option of mDNSResponder to run it only on the LAN interface.

I'm attaching the startup script I use for mDNSResponder.