I had added a "lanp" interface isolated from the main "lan" in order to block its output to the net, and the devices that are connected to this interface will be forced to go through the Tinyproxy (installed in the router). It works well maybe a little slowdown at the DNS level.
Today, I have my son that his computer passes through this interface, he asks me to open several ports so that he can play minetest, minecraft, OBS Youtube…
To avoid adding several rules in Firewall, I decided to authorize all ports in MASQ except 80 and 443.
here's the firewall config:
config zone option name 'lanp' option input 'ACCEPT' option output 'ACCEPT' list network 'lanp' option forward 'ACCEPT' config nat option name 'Out from Proxy' list proto 'tcp' list proto 'udp' list proto 'icmp' option src 'wan' option src_ip '192.168.5.0/24' option dest_port '!80-443' option target 'MASQUERADE'
but, is not working for gaming and OBS....
is need forwarding rules ?
any help from you would be much appreciated.
Hardware: ASUS RT-AX53U
OpenWrt 22.03.3 r20028-43d71ad93e