Posted: Mon Sep 11, 2017 1:07 Post subject: Noob general firewall question
I new to the setup of DD-WRT I have flashed my router. Its a WRT-1900ac-v2 r33257. I have it up and running on my bench and I am going through it page by page. My question is about the firewall in general I see where i can turn on and off the SPI Firewall. But I have read in some forum postings that its not a good one to use? So I am confused. Is there another firewall? I read about a statefull firewall and nat firewall. I am wondering where I turn them on, I have been looking under every tab and tried to see it on the forum. I seen examples of code to copy and install but I don't understand the code on how it works to install it.. Hell I might install it and think my firewall is up and one little thing is left out and I am standing there with my pants down to the world.
Joined: 16 Nov 2015 Posts: 6437 Location: UK, London, just across the river..
Posted: Mon Sep 11, 2017 6:18 Post subject:
well NAT firewall is running by default if you are using routed as DHCP server to handle IP's...
SPI firewall is the other bit...you can turn it on and its good to use it..
there is also a firewall script section where you can add iptables rules to permit, reject/drop, or route connections
https://www.dd-wrt.com/wiki/index.php/Iptables_command _________________ Atheros
TP-Link WR740Nv1 ---DD-WRT 55630 WAP
TP-Link WR1043NDv2 -DD-WRT 55723 Gateway/DoT,Forced DNS,Ad-Block,Firewall,x4VLAN,VPN
TP-Link WR1043NDv2 -Gargoyle OS 1.15.x AP,DNS,QoS,Quotas
Qualcomm-Atheros
Netgear XR500 --DD-WRT 55779 Gateway/DoH,Forced DNS,AP Isolation,4VLAN,Ad-Block,Firewall,Vanilla
Netgear R7800 --DD-WRT 55819 Gateway/DoT,AD-Block,Forced DNS,AP&Net Isolation,x3VLAN,Firewall,Vanilla
Netgear R9000 --DD-WRT 55779 Gateway/DoT,AD-Block,AP Isolation,Firewall,Forced DNS,x2VLAN,Vanilla
Broadcom
Netgear R7000 --DD-WRT 55460 Gateway/SmartDNS/DoH,AD-Block,Firewall,Forced DNS,x3VLAN,VPN
NOT USING 5Ghz ANYWHERE
------------------------------------------------------
Stubby DNS over TLS I DNSCrypt v2 by mac913
well NAT firewall is running by default if you are using routed as DHCP server to handle IP's...
SPI firewall is the other bit...you can turn it on and its good to use it..
there is also a firewall script section where you can add iptables rules to permit, reject/drop, or route connections
https://www.dd-wrt.com/wiki/index.php/Iptables_command
Thank you for the reply.
Under SETUP-BASIC SETUP, and upnder the heading "Network address server setting(DHCP)"
I have it set to "DHCP Type" set for DHCP server.
and "DHCP server" enabled.
