|
- Recommended firewall settings - Network and Wireless Configuration . . .
If you pull up Network>Firewall what are the recommended settings for "General" and "Zones?" Upon reading google hits, many are showing a "Lan -> wan" setting of "reject" for forward whereas the out-of-the-box settings have that set to "accept" including this OpenWRT wiki
- Firewall rules (forwarding) - OpenWrt Forum
The zone level forward rule controls forwarding between two or more networks that are in the same firewall zone This is intra-zone forwarding If that is set to accept, it will allow those networks to communicate with each other unless there are any other rules filtering prohibiting those connections
- Using iptables in v24. 10. 1 - OpenWrt Forum
Only manually defined iptables code firewall rules would be relevant here Anything running on the level of the UCI LuCI firewall configuration is already compliant and compatible with the iptables -> nftables migration insofar as these are higher level firewall descriptions where the underlying nftables rules are abstracted from the user
- Limit outgoing wan traffic from router itself - OpenWrt Forum
I'm having a bit of trouble with outgoing traffic from the router itself The goal: I want all traffic from the router itself, eg: dns, updates, packages, blocklists, ipsets to go over a vpn So I created the following firewall rules: allow vpn-connections to wan mark 0x10 ipv4 6 from this device to wan block everything from this device to wan and added a routing rule: mark '0x10' lookup '21
- Adding a DNS forward through Luci - OpenWrt Forum
I'm configuring my OpenWRT to forward its requests to my pi-hole on a rpi4 I've already setup the firewall forwarding rule to get my lan clients to use pi-hole In order to capture the OpenWRT router itself I've read here to use Network>DHCP and DNS>Forwards but I'm unclear on what info (and format of that info) goes into the DNS Forwards and Additional server files boxes Hopefully this
- Raspberry Pi 4 vs OpenWrt One for routing, firewall, NAS, and offsite . . .
Hello helpful forum folks, I'm looking for server hardware to run OpenWRT and provide dedicated routing, firewall, network-attached storage access, and offsite backup (of NAS, via rclone) Internet access will be provided to the router via a Quectel RM520N-GL in a standalone modem enclosure A dedicated wireless access point will be located downstream from the router I'd really like for the
- PBR problems no service gateways - OpenWrt Forum
Hi, I have openwrt 23 05 on an access point, thsi access point has a single lan port that plugs into a firewall (not openwrt) Internet traffci works fine, but now im tryign t force spciefic traffci via an open vpn whe…
- Is the firewall broken when an invalid rule is included?
The firewall is a rather complex piece of software, it's very easy to get that wrong The defaults using fw4 (the abstracted zone based rule sets) are secure and work for the vast majority of use cases - and the rules can be extended as needed
|
|
|