Hello Everyone,
I am killing myself many days, read all tutorials, I cannot get this done.
Not a complex scenario.
Fiber DSL connection to home.
I want to isolate internet of shits like smart plugs, tvs, remotes, etc from my laptop and router's admin interface.
192.168.1.0/24 good WIFI (lan)
But I want to be able to access them from good WIFI. They have their apps.
I played with all these six ways till Sunday, still no go. What am I doing wrong?
NOTE: These are just examples, I tried many different options.
.....
....
I don't know why the images are not clear.
uci -q delete firewall.lan_guest
uci set firewall.lan_guest="forwarding"
uci set firewall.lan_guest.src="lan"
uci set firewall.lan_guest.dest="Guest"
uci commit firewall
/etc/init.d/firewall restart
2 Likes
Magic touch? Many thanks vga!
I did not want to do it before, because aren't those settings on the first line allowing LAN access from GUEST as well? INPUT-OUTPUT-FORWARD all ACCEPT.
NOTE: It seems to work though. I can access GUEST from LAN, but not vice-versa. GUEST can also access internet as required.
forwardings are unidirectional. You need to explicitly allow guest->lan.
2 Likes
There should have been only OUTPUT and FORWARD there, then. No? INPUT is confusing.
Tks, trendy. I don't know why I can't quote your post.
Actually I got it. INPUT there refers to the router itself, I think.
1 Like
I found this video:
Explains this all better in 10 mins that I have spent reading for days.
My own stupidity. Many thanks guys, trendy and vgaetera. Have a great weekend!
4 Likes
system
June 7, 2021, 3:59pm
9
This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.
