Modification de OpenWrt Zone Guest

De Marmits Wiki

Firewall pour zone guest

voir: openwrt guest wifi

Si politique de rejet sur input de la zone guest 

config zone

option name 'GUEST'

option input 'REJECT

option output 'ACCEPT'

option forward 'REJECT'

list network 'GUESTLAN'

config rule

option name 'GUEST DHCP AND DNS IPV4'

option src 'GUEST'

option dest_port '53 67 68'

option target 'ACCEPT'

option family 'ipv4'

config rule

option name 'GUEST DhcpIPV6'

option family 'ipv6'

list proto 'udp'

option src 'GUEST'

option dest_port '547'

option target 'ACCEPT'

config rule

option name 'GUEST ICMP IPV6'

list proto 'icmp'

option src 'GUEST'

option target 'ACCEPT'

option family 'ipv6'
Récupérée de « https://marmits.com/w/index.php?title=Modification_de_OpenWrt_Zone_Guest&oldid=1528 »