Joined: 18 Mar 2014 Posts: 12915 Location: Netherlands
Posted: Sat May 30, 2020 7:28 Post subject: Re: Disable WAN access to a IP address?
lolcocks wrote:
Hello,
I am running DD-WRT on my R6400.
I want to disable WAN to a single IP address, lets say 10.0.0.2 for instance.
It's wired but from the R7000 router, it goes to a switch and then the PC.
How can I completely disable internet access to it? I don't even want a single packet to hit the internet from that machine.
Disable WAN to a single IP address? I am afraid I do not understand that but English is not my native language
If this R6400 is a secondary router connected to an R7000, consider setting it up as a WAP then you have WAN disabled and can control everything from the R7000
Posted: Sat May 30, 2020 13:35 Post subject: Re: Disable WAN access to a IP address?
egc wrote:
lolcocks wrote:
Hello,
I am running DD-WRT on my R6400.
I want to disable WAN to a single IP address, lets say 10.0.0.2 for instance.
It's wired but from the R7000 router, it goes to a switch and then the PC.
How can I completely disable internet access to it? I don't even want a single packet to hit the internet from that machine.
Disable WAN to a single IP address? I am afraid I do not understand that but English is not my native language
If this R6400 is a secondary router connected to an R7000, consider setting it up as a WAP then you have WAN disabled and can control everything from the R7000
I completely fucked up that description. I think I needed sleep.
What I wanted to say was I have a R6400 1 ethernet cable from the R6400 goes to the switch.
From the switch, it goes to 8 different machines. Of those 8 machines, I want to disable internet access to one of those machines, not a single packet should go through.
This will prevent any packets from that IP address getting forwarded across the NAT router to the internet
This will not prevent packets from being relayed on the switch, since those will not go through the firewall, for that you would need to reconfigure the switch (using something like vlans)
we have to assume, you have only br0 (Switch + WiFi),otherwise you have to use the default interface...that is concerned... _________________ Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913