[SOLVED] How to configure IP blacklists [SOLVED]

Hello there,

I need some help to configure my guest wifi in a way that maybe dangerous websites are blocked. So far I have used firewall traffic rules but is there any comfortable way? I think it would be nice to add like a txt file which serves a blacklist and then use that as blocked destinations INSTEAD of typing in every single IP address.

For now I am working with LuCi because I don't know how to edit with command lines or even how to get to the command line section.

Can u please help?
Thanks!

Thx. I read about banIP but how do I implement that? I searched under LuCi - System - Software but I don't know how to proceed...

Kind regards,

CharlesHenry aka Mike

Did you read the documentation that @vgaetera linked to in the post above?

For blocking outgoing requests with a blacklist I recommend focusing on BanIP of those two suggestions.

But you still need to read the manual for the program, but the luci user interface isn’t that hard to get.

Ok. Yes... but how do I get that?
I I know where to download. But how do I transport it to the AP? And my AP only has 32 mb memory.

You don't.

Both of these need to run on the router, not a (dumb-) AP (unless you you play around with DHCP option 6 (only applies to adblock, not banip), but that's very prone to creating circular dependencies and far from AP usage scenarios).

That said, adblocking (and to a similar degree banip as well) needs RAM (to download, process and provide the blocklists to dnsmasq; dnsmasq's forking behaviour on tcp requests doesn't help this either), 128 MB RAM devices already need to limit the number of blocklists to survive, 32 MB is pretty much out of the question for any of the common (large) blocklists.

Thx! I recently found out my router can block some websites and IPs. So that would fit my needs. Thank you all for the help!

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.