« Modification de OpenWrt Zone Guest » : différence entre les versions
Aucun résumé des modifications Balise : visualeditor-switched |
Aucun résumé des modifications |
||
| Ligne 6 : | Ligne 6 : | ||
<pre> | <pre> | ||
config zone | config zone | ||
option name 'GUEST' | |||
option name 'GUEST' | option input 'REJECT | ||
option output 'ACCEPT' | |||
option input 'REJECT | option forward 'REJECT' | ||
list network 'GUESTLAN' | |||
option output 'ACCEPT' | |||
option forward 'REJECT' | |||
list network 'GUESTLAN' | |||
config rule | config rule | ||
option name 'GUEST DHCP AND DNS IPV4' | |||
option name 'GUEST DHCP AND DNS IPV4' | option src 'GUEST' | ||
option dest_port '53 67 68' | |||
option src 'GUEST' | option target 'ACCEPT' | ||
option family 'ipv4' | |||
option dest_port '53 67 68' | |||
option target 'ACCEPT' | |||
option family 'ipv4' | |||
config rule | config rule | ||
option name 'GUEST DhcpIPV6' | |||
option name 'GUEST DhcpIPV6' | option family 'ipv6' | ||
list proto 'udp' | |||
option family 'ipv6' | option src 'GUEST' | ||
option dest_port '547' | |||
list proto 'udp' | option target 'ACCEPT' | ||
option src 'GUEST' | |||
option dest_port '547' | |||
option target 'ACCEPT' | |||
config rule | config rule | ||
option name 'GUEST ICMP IPV6' | |||
option name 'GUEST ICMP IPV6' | list proto 'icmp' | ||
option src 'GUEST' | |||
list proto 'icmp' | option target 'ACCEPT' | ||
option family 'ipv6' | |||
option src 'GUEST' | |||
option target 'ACCEPT' | |||
option family 'ipv6' | |||
</pre> | </pre> | ||
[[Catégorie:OpenWrt Firewall]] | [[Catégorie:OpenWrt Firewall]] | ||
Dernière version du 23 mai 2024 à 06:58
Firewall pour zone guest
voir: openwrt guest wifi
Si politique de rejet sur input de la zone guest
config zone option name 'GUEST' option input 'REJECT option output 'ACCEPT' option forward 'REJECT' list network 'GUESTLAN' config rule option name 'GUEST DHCP AND DNS IPV4' option src 'GUEST' option dest_port '53 67 68' option target 'ACCEPT' option family 'ipv4' config rule option name 'GUEST DhcpIPV6' option family 'ipv6' list proto 'udp' option src 'GUEST' option dest_port '547' option target 'ACCEPT' config rule option name 'GUEST ICMP IPV6' list proto 'icmp' option src 'GUEST' option target 'ACCEPT' option family 'ipv6'