Mushoz
February 13, 2022, 12:36pm
1
I am currently running an older snapshot that is still using Firewall3 + iptables. This allows me to isolate clients on my guest LAN via iptables, by following this article: https://openwrt.org/docs/guide-user/firewall/fw3_configurations/bridge
Is there anything similar that can be done with Firewall4 / nftables? I know I can also do the isolation on layer 2 via ebtables, but it has the downside that I cannot make firewall exceptions / forwards based on IP information.
Not sure if it will help, but refer to the examples at the nftables wiki.
https://wiki.nftables.org/wiki-nftables/index.php/Bridge_filtering
Mushoz
February 22, 2022, 1:56pm
3
I had time to play around with it myself, and I can confirm that the OpenWRT guide works just fine with FW4 / NFTables: https://openwrt.org/docs/guide-user/firewall/fw3_configurations/bridge
system
March 4, 2022, 1:56pm
4
This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.