With the help from this thread I have configured a Linksys WRT54GL router with standard Tomato 1.28 firmware, as a simple access point. The last thing I need to a accomplish is restricting admin access to the router. Only one specific private IP address should be allowed to access the web interface and SSH server. The wireless clients should not be able to access either the web interface, SSH server or Telnet server no matter what their IP address is. I have tried to enter a specific IP address under Administration -> Admin Restriction -> Allowed IP address but I'm still able to connect with any IP address. This is the output of iptables -L -v Code: Chain INPUT (policy DROP 0 packets, 0 bytes) pkts bytes target prot opt in out source destination 0 0 DROP 0 -- any any anywhere anywhere state INVALID 2263 231K ACCEPT 0 -- any any anywhere anywhere state RELATED,ESTABLISHED 153 9349 ACCEPT 0 -- br0 any anywhere anywhere 0 0 ACCEPT 0 -- lo any anywhere anywhere Chain FORWARD (policy ACCEPT 0 packets, 0 bytes) pkts bytes target prot opt in out source destination 0 0 TCPMSS tcp -- any any anywhere anywhere tcp flags:SYN,RST/SYN tcpmss match 1461:65535 TCPMSS set 1460 Chain OUTPUT (policy ACCEPT 2558 packets, 1548K bytes) pkts bytes target prot opt in out source destination The solution is probably to create a custom iptables rule and add it to the firewall script, but I'm not sure on the correct syntax of the rule? I have made sure that the checkbox Allow Wireless Access under Administration -> Admin Restriction -> Web Admin is unchecked. Is there any way I can confirm this setting via SSH access? as I don't have any wireless clients to test with yet. Thanks in advance.