Posted: Fri Aug 17, 2007 0:14 Post subject: Port Forwarding - Restrict Access to 1 Outside IP?
Is it possible with DD-WRT to setup a Port Forward rule and restrict it so it is accessible from only one outside IP? I've done this both on expensive PIX firewalls with Cisco IOS, and I've also done this on a cheap ActionTec DSL router from Qwest. However, with DD-WRT on my Linksys WRT54G/GL/GS there seems to me to be no such feature.
Can someone tell me if this is possible with DD-WRT on my Linksys WRT54G/GL/GS (DD-WRT v23 SP2 (09/15/06) std - build 3932)???
Posted: Fri Aug 17, 2007 10:42 Post subject: To Clarify...
Just to clarify... I want to be able to access my home network from the outside IP of the firewall at my office, but I don't want my home gateway to respond to any other IP on the internet. Is there any way to do this with DD-WRT?
Last edited by sunstardude on Sun Aug 19, 2007 16:23; edited 1 time in total
There has been a topic on this forum about adding a gui interface for this, but sofar it's not (yet?) implemented. You can use iptables for this, for the syntaxis you need, google for "iptables" and create the rule you want, then save it to the firewall (under administration -> commands). _________________ EA6900 DD-WRT v3.0-r48305 std
EA6900 FreshTomato 2022.1
DIR825 B1 DD-WRT v3.0-r30949 std
retired:
WRT54GL v1.1 DD-WRT v24-SP2 vpn - build 10550
WRT610N v1 DD-WRT v24-preSP2 - build 14929 mega
Joined: 07 Jun 2006 Posts: 1488 Location: the Netherlands
Posted: Sat Aug 18, 2007 17:49 Post subject:
Indeed, I've requested it but havn't gotten a response yet. I'll add a request to the bugtracker for that. _________________ Firmware: DD-WRT v24-sp2 (latest available) mega
WRT320N
I discussed this feature (allow external access by IP and/or MAC... IPs change) with BS back in Feb. 2005 & his stated intent was to implement it when time allowed. Sadly, there was not enough interest, OR it just got lost in the sheer volume of feature requests since. In light of how this wonderful FW has progressed in that time, I can't fault the developers in any way, shape, or form, but perhaps with this renewed interest... _________________ NetGear XR500 - FW Version: DD-WRT v3.0-r55819 std (04/17/24)
Linux 6.1.86 #130 SMP Wed Apr 17 05:48:30 +07 2024 armv7l
Updated from: DD-WRT v3.0-55779 std (04/12/24) via GUI (FF), NO reset
Gateway: SmartDNS, DDNS (FreeDNS), IPv4 DHCP, Static leases, SFE Disabled, QoS Disabled
AP: 2.4GHz NG-Mixed 40MHz, 5GHz AC/N-Mixed 80MHz, WPA2 w/ AES, MAC filtering, Isolated Guest VAP on wlan1, Vanilla FW
Services: USB Storage, NAS, Samba
Storage: Samsung Portable SSD T7 Shield USB 3.2 2TB, /jffs, /opt, /data (ext4)
Joined: 07 Jun 2006 Posts: 1488 Location: the Netherlands
Posted: Wed Aug 22, 2007 16:23 Post subject:
@d00zah; yes let's hope that. Cause I would like this feature instead of doing it by hand with iptables. _________________ Firmware: DD-WRT v24-sp2 (latest available) mega
WRT320N