.
Buffalo WZR-HP-G450H Firmware Version
OpenWrt Attitude Adjustment 12.09 /
LuCI 0.11.1 Release (0.11.1) with
iptables-mod-iprange installed.
I would like to block a group of LAN
ip's from the internet and have tried
the following rule without success:
config rule
option src lan
option extra '-m iprange
--src-range 192.168.1.4-192.168.1.50'
option dest wan
option proto tcp
option target REJECT
Actually I want to add something like:
option extra '-m time
--weekdays Sat,Sun,Mon,Tue,Wed,Thu,Fri
--timestart 05:00 --timestop 23:59'
In order to restrict access at certain
times.
I have been unable to make the ip
address range function work. I did opkg
install iptables-mod-iprange and
restarted the firewall after making
changes but the rule does nothing. It
will work if I tell it to reject a
single address but not with the option
extra src-range line.
However I can create rules for each ip
address [I would need 10 or more] I need
to control and the "option extra '-m
time --weekdays
Sat,Sun,Mon,Tue,Wed,Thu,Fri --timestart
05:00 --timestop 23:59'" function works
as expected.
I would really like to have this working
to restrict a range of wifi addresses
when needed. As it stands the only way I
can get that feature is to swap with an
DD-WRT router.
What am I doing wrong?
Any help appreciated,
Bob
--
Bob Goodwin - Zuni, Virginia, USA
http://www.qrz.com/db/W2BOD
box10 FEDORA-23/64bit LINUX XFCE POP3
_______________________________________________
openwrt-users mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-users
