Added "reject anyzone to thisdevice" now everythings broken

RSHARM · November 28, 2023, 1:44pm

I created this rule

accept lan to this device from some MACs at top
from reject anyzone to this device at bottom

Now Some devices can't get IP via DHCP
if they can some don't get internet
and non can access web page htttps://192.168.1.1 or via SSH.

Any way to fix it before I reset it

OpenWrt v23.05.2

pavelgl · November 28, 2023, 2:36pm

Try entering failsafe mode.

lleachii · November 28, 2023, 2:36pm

Are you saying you made two rules?
Can you show a screenshot or the actual rule or paste it from /etc/config/firewall?

It's not clear what you're saying - given you listed both "accept" and "reject".

Yes:

remove the rule; or
connect from the MAC you added to the firewall

jow · November 28, 2023, 3:10pm

Due to the chain structure, "any zone" rules are processed before specific zone ones, so the reject one will effectively take precedence over the lan one, regardless of the rule ordering.

RSHARM · November 28, 2023, 4:06pm

Where are firewall rules stored ? /etc/config/firewall seems to have default rules. I am in failsafe mode the power led it blinking fast

pavelgl · November 28, 2023, 4:11pm

Did you run mount_root first?

RSHARM · November 28, 2023, 5:18pm

Do you mean rules where any zone is as in "from any zone" ?
I have reject lan to any zone and my internet works

system · December 8, 2023, 5:18pm

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.