The content of this topic has been archived on 30 Mar 2018. There are no obvious gaps in this topic, but there may still be some posts missing at the end.
Hi openWRT community,
i would like to modify my firewall a bit.
there is a server at 192.168.0.11
i want to block all traffic from 192.168.0.11 to wan except of "http://update.freenas.org/FreeNAS"
can i configure this over webinterface, or do i need to dig deeper in the files?
any idea how to do this via webinterface? i tried to put the "http://update.freenas.org/FreeNAS" www-address directly to destination, but this seems not to be accepted.
BR jon
go to firewall and add a new forward rule with LAN - WAN (source - destination)
from source mac, choose the mac address of your freeNAS, then in Action choose reject or drop (which ever is good for you)
then add another one with the same mac address as source and set the destination ip of your update.freenas.org (just resolve it with your DNS resolving things like nslookup) and in Action choose Accept.
thanks for reply.
i have tried:
block any traffic from [Mac of NAS] to any in WAN
and
accept any traffic from [Mac of NAS] to 172.217.18.99 in WAN
this ip is for google, just testing purpose.
if i ping from the NAS i get feedback, its blocked.
any idea?
The discussion might have continued from here.