1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

How to block PORT on Local Network

Discussion in 'Tomato Firmware' started by trialbeing, Nov 15, 2007.

  1. trialbeing

    trialbeing LI Guru Member

    I can block PORT outgoing to/incoming from the INTERNET. But for local network, all PCs can freely connect together and bypass all iptables's rules. How can I control the traffic inside Local Network? Look like they're direct connect to each other.

    Thanks so much for advice :)

    ps. Local PCs are both connected by wire and wireless.
  2. GhaladReam

    GhaladReam Network Guru Member

    The only thing I can think of is to use a software firewall on the machines you want restricted internally.
  3. paped

    paped LI Guru Member

    A software firewall on each PC is the only way to do it as the firewall is where IPtables blocks all the ports/traffic but this is only between the wan port (internet) and internal network. So as far as the router is concerned it just allows full access between any local PC connected via wireless or the switch ports.
  4. namaste

    namaste LI Guru Member

    Can i know how? I want to block port for my one pc i.e shouldnt access port 2960 udp/tcp. All others can.
  5. acidmelt

    acidmelt LI Guru Member

    Go to the "Access Restriction" page and create a rule that applies to that is scheduled for "All day", "Every day" and add the ports youd like to block in the "blocked resources".
  6. u3gyxap

    u3gyxap Network Guru Member

    Web interface --> Access Restrictions.
    edit: agrrrr! acidmelt, you got me by 1 minute!

Share This Page