I have a wireless weather station on an IoT wireless network with IP 10.10.30.1. I need to allow it to upload data to a PC on my main network at 10.10.10.1. If I connect the device to the main network, it works as expected, but I want to leave it on IoT instead of on the main network.
I just want this certain IoT network device to upload data to a certain PC on the main network, but leave them on the networks they are on. How do I accomplish this in LuCI? I have tried creating a firewall port forward and a traffic rule. Neither worked.
You'll create a traffic rule that accepts traffic from the source zone (presumably IoT) and the source address (10.10.30.1 -- assuming that's the weather station's IP) to destination zone (presumably lan) and destination address (10.10.10.1 -- assuming that's the PC's address). I'd select TCP+UDP as the protocol option, unless it uses some other protocol.
You can further restrict it, if desired, by allowing only specific ports (assuming you know what those port numbers are).
You need to dump taffic between weather station and PC and allow detected ports/protocols, yes, learn from the communication. Maybe there is some firewall guide for that weather station somewhere?
That’s what I did but couldn’t get it to work. I forgot to mention that port 8998 is used. I removed the port it wanted to use from the rule. It worked after doing that. I re-added port to destination. Still working. I re-added port to source. That broke it. Removed source port. Working again.
So the whole issue for me was specifying the source port which was not needed.
