#18135: Firewall not Rejecting Packets
------------------------------+-----------------------------------
Reporter: dr431 | Owner: developers
Type: defect | Status: new
Priority: response-needed | Milestone:
Component: base system | Version: Barrier Breaker 14.07
Resolution: | Keywords: firewall
------------------------------+-----------------------------------
Comment (by dr431):
Thank you for your reply. For Clarity, I don't have anything connected to
the WAN port yet. Everything I am trying is on the LAN. I plan to hook up
the WAN once I understand what is happening with the LAN.
Here's what I got when I tried ping:
Ping Router: success
Ping 8.8.8.8: Destination Port Unreachable
Ping Target PC on same subnet as Windows PC: success
Then I added a rule to block input traffic and put it first in
/etc/firewall:
config rule
option src '*'
option target 'REJECT'
option proto 'all'
option name 'stopInput'
option src_mac 'DC:0E:A1:BA:4C:5A'
config rule
option name 'BlockICMP'
option proto 'icmp'
option src '*'
option src_mac 'DC:0E:A1:BA:4C:5A'
option dest '*'
option target 'REJECT'
config rule
option src_mac 'DC:0E:A1:BA:4C:5A'
option target 'REJECT'
option name 'block_all_traffic'
option src '*'
option dest '*'
And got this result from ping:
Ping Router: Request timed out, then Destination Port Unreachable
Ping 8.8.8.8: Destination Port Unreachable
Ping target PC on same subnet as Windows PC: success
Which is sort of what I expected. I'm not sure why the ping to a target PC
on the same subnet wasn't stopped.
--
Ticket URL: <https://dev.openwrt.org/ticket/18135#comment:2>
OpenWrt <http://openwrt.org>
Opensource Wireless Router Technology
_______________________________________________
openwrt-tickets mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-tickets
