Logdrop all - anywhere anywhere state INVALID Logaccept all - anywhere anywhere state NEWĪCCEPT tcp - 192.168.0.0/24 anywhere tcp dpt:1723 Logaccept udp - anywhere anywhere udp spts:bootps:bootpc dpts:bootps:bootpc Logaccept udp - anywhere anywhere udp dpt:domain Logaccept tcp - anywhere darkblue_ tcp dpt:sshĪCCEPT all - anywhere anywhere state NEW Logaccept udp - anywhere anywhere udp dpt:1194 state NEWĭROP udp - anywhere anywhere udp dpt:routeĪCCEPT udp - anywhere anywhere udp dpt:route Hmm, I think there must be something wrong with the iptables rules, so I telnet onto the wrt54 and show the result as this:ĪCCEPT all - anywhere anywhere state RELATED,ESTABLISHED I have try your configuration, and the dhcp service work fine with there three vlans, but unfortunately, vlan 2 still stay outside of the vlan0(LAN) and eth1(wireless vlan).even more worse, the eth1 could not access vlan0(LAN) and vlan1(WAN). Sorry for late, I spend last two week for another project Iptables -I FORWARD 5 -i vlan2 -o vlan1 -j lan2wan Iptables -I FORWARD 11 -i eth1 -o vlan1 -m state -state NEW -j logaccept
Iptables -I FORWARD 11 -i vlan2 -o vlan1 -m state -state NEW -j logaccept Iptables -I INPUT 2 -i vlan1 -p udp -dport 1194 -m state -state NEW -j logaccept Iptables -I INPUT 9 -i eth1 -p udp -dport 53 -j logaccept Iptables -I INPUT 9 -i eth1 -p udp -dport 67:68 -sport 67:68 -j logaccept Iptables -I INPUT 9 -i vlan2 -p udp -dport 53 -j logaccept Iptables -I INPUT 9 -i vlan2 -p udp -dport 67:68 -sport 67:68 -j logaccept see what pops up In my case, the pings started workingĪlso explains why it's in This order in the nvram: Set vlan2 to use port '3' and plug your cable into port 1 on the router. haha, would explain why its not working for some peeps. Port '0' = port 4, as labelled on the router's caseĪt least thats what its seeming like so far. I'll try it with moving port '3' to vlan2. and 5 is the router's internal port? Might be why its not working for some peeps. So does that mean that port '0'=1 '1'=2 '2'=3 '3'=4, as those 4 are the 4 'lan' ports in vlan0Īnd port '4' would be the WAN port. Hey, on my v4 GS, Stock off the nvram, fresh firmware v23, it's reported like this: Or, that's not ppp0 i need to put in rules.
I can ping router but no internet (maybe i need to put dns of my isp on the ip setting of the pc.) Ok, i see that with "nvram get rc_firewall", i miss to add "iptables -I INPUT -i vlan2 -j ACCEPT" so i renter it and now i got : So, there are little differences with your settings. Iptables -I FORWARD -i vlan2 -o ppp0 -j ACCEPT Iptables -I FORWARD -i ppp0 -o vlan2 -j ACCEPT Nvram set rc_firewall="iptables -I INPUT 2 -i vlan2 -j ACCEPT" Nvram set rc_startup="ifconfig vlan2 10.0.0. Hum.my vlan2 could not ping the router anymore.nor access to internet.
0 kommentar(er)
