Posted: Sat Oct 03, 2015 22:58 Post subject: Port Forwarding with IP Blocking?
Any router will allow me to forward incoming port-25 traffing to a specific LAN IP - something that I do now for my email server.
Can DD-WRT go one step further, and allow me to add IP blocking rules to my port-forwarding setting? Where the blocking would only apply to incoming traffic on port-by-port basis?
Regarding plain vanilla port-forwarding, how many entries does DD-WRT allow?
So the DD-WRT web interface does not give you the ability to create / edit a table of IP addresses (either individually or in CIDR notation) that represent a white or black list of external hosts to which a specific port-forward rule applies to. Yes?
The blocking list my mail server uses has almost 10,000 entries that cover over 75% of IPv4 address space, causing my server to issue SMTP "connection refused" errors to the remote host. Of those many thousands of entries, about 50 of them are entire /8 "A" classes which would be useful to offload the blocking to the router instead of the mail server.
Getting back to DD-WRT's web interface for NAT configuration, does either the web interface (or DD-WRT in general) have an upper limit as to the number of port-forward rules you can have?