I have the setup as shown in this forum post:
https://forum.openwrt.org/viewtopic.php?pid=267049#p267049
2 VLANs and 3 WLANs (work, home, guest)
192.168.3.0/24 has eth0.3 and "work" WLAN bridged, where all my office
devices are located.
192.168.1.0/24 has eth0.1 and "home" WLAN bridged, for rest of the
household.
192.168.50.0/24 for guest wifi
I was trying to figure out how to access devices in 192.168.1.0/24 and
192.168.50.0/24 from 192.168.3.0/24 but block access the other way around.
Based on reading info online and from several posts, made the following
changes in /etc/config/firewall:
config forwarding
option src work #192.168.3.0/24
option dest lan #192.168.1.0/24
config forwarding
option src work
option dest guest #192.168.50.0/24
and added couple of static routes in /etc/config/network
config route
option interface 'work'
option target '192.168.1.0'
option netmask '255.255.255.0'
option gateway '192.168.1.1'
config route
option interface 'work'
option target '192.168.50.0'
option netmask '255.255.255.0'
option gateway '192.168.50.1'
=======================================
Here are my questions:
1.Now I can access my linux box and the printer when they are connected to
192.168.1.0/24 but not my windows 7 laptop.
I am guessing it's something to do with the windows settings. Any
suggestions?
2. what are all the settings for interVLAN communication to work?
3. what is the use of option "forward" under each zone config?
eg. my guest wifi config looks like:
config 'zone'
option name guest #this is the zone name
option network guest
option input REJECT
option forward REJECT
option output ACCEPT
# Allow Guest -> Internet
config 'forwarding'
option 'src' 'guest'
option 'dest' 'wan'
here forward option is set to REJECT when the guest zone is configured,
this blocks all interVLAN comms but can be overridden by config forwarding
section, is my understanding right?
4. for the static routes, I have used 192.168.xxx.1 for option gateway
even though I haven't specified the gateway for each interface, is it
always by default 192.168.xxx.1?
I changed the ipaddr for couple of interfaces to 192.168.xxx.99 and the
following output is from my windows box where it's using ethernet and WNIC:
Why is the default gateway different here when they are both connected to
192.168.3.0/24?
Wireless LAN adapter Wireless Network Connection:
Connection-specific DNS Suffix . : lan
IPv4 Address. . . . . . . . . . . : 192.168.3.206
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.3.99
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . : lan
IPv4 Address. . . . . . . . . . . : 192.168.3.214
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.3.1
Thanks!
--
Kind regards,
Yudi
_______________________________________________
openwrt-users mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-users
