Iptables, wrt54g and fwbuilder

Discussion in 'DD-WRT Firmware' started by on4cet, Apr 22, 2005.

  on4cet

    on4cet

    Who can tell me which interfaces a WRT54G v2.2 actually has, I mean all of them which are adressable from iptables ...

    I want to configure new rules using fwbuilder, but need some more exact info ...

    Are there people around who already configured their iptables with fwbuilder ?

    Kind regards

  BrainSlayer

    BrainSlayer

    br0 = wlan-lan bridge
    vlan0 = lan
    nvram get wl0_ifname = wlan/wan interface
  tl511

    tl511

    I am currently working on configuring iptables with fwbuilder. I'll let you know how it goes with the new version.
  on4cet

    on4cet


    That would be great to hear ...


    Can't the interfaces like eth0: eth1: eth2: vlan1: be used then ?

    I would like maximum control, so if I want to cut the wlan from the lan, i can't use the br0: interface isn't it ?

  tl511

    tl511


    I got it to work. I realized that I had screwed up the location of "ip". I loaded the first default template for a Linksys router. Then edit the firewall that you added and under "Host OS Settings" add the proper location of the files listed below.

    iptables = /usr/sbin/iptables
    ip = /usr/sbin/ip (this is what was failing)
    logger = /usr/bin/logger
    modprobe = /sbin/modprobe
    lsmod = (left blank - couldn't find it)

    After doing this, I compiled the rules from a device on the lan port of the router and installed! It worked. Just added a rule to allow an external device to ssh to it and it works. Awesome!!!!

    Good luck.
  BrainSlayer

    BrainSlayer

    you never would ask this question if you had tried it. prefinal4 allows you the selection of LAN, WAN and WLAN+LAN interface.
    that means regarding to your selection dhcpif=vlan0, eth1/eth2 or br0 will be written. just try it. it works
  BrainSlayer

    BrainSlayer

  tl511

    tl511

    Why you are correct. I don't know how I missed that one. I must have mis-typed it when I was looking for it. That is default for fwbuilder so it worked fine leaving it blank. But thanks.
  on4cet

    on4cet


    Possible to share the .fwb file ?


    Sorry, haven't tried beta 4 ... still on 3.2 i guess ... But one question, If I configure the iptables with fwbuilder, are they affected afterwards with the settings from the GUI of DD-WRT ? And to which extend ?

    Eg : If I put firewall off in GUI, is iptables ignored partly ? etc...

    Kind regards,

