I need some feed back. I'm running OpenWrt 19.07-SNAPSHOT r10560-92953ae99f on my primary router, and i tried to firewall some chinese IP cams from connecting to the interenets with the following rules:
config rule
option enabled '1'
option src 'lan'
option dest 'wan'
option name 'Cam1 block'
option family 'ipv4'
option proto 'all'
option src_ip '192.168.1.51'
option target 'DROP'
However this fella' found himself some cosy firmware upgrades, which is mighty strange to me. Even after changing to
Welp, I did not think of this at first... Thinking about it - kinda makes sense, LAN would basically talk via layer-2 wouldn't it? Hence not going via firewall.
Rip my rules to block forwarding to/from Samsung TV to LAN hosts... will need to actually put it into a separate vlan I suppose.
Edit
It's a traffic rule, not input
Thanks, makes sense now. I've always found zone-based firewalls confusing.