Access Resrictions

Discussion in 'HyperWRT Firmware' started by Ray, Sep 23, 2004.

  1. Ray

    Ray Network Guru Member

    Is anyone else having problems getting the access restrictions to work?
  2. Toxic

    Toxic Administrator Staff Member

    what type or restriction are you trying to do.

    Please tell me as much info as possible about what your trying to achieve
  3. imasterxx

    imasterxx Network Guru Member

    having the same problem...

    i need to restrict internet access to one of my computers to test something out and the access restrictions doesn't seem to be working. i put the IP addr of the comp, along with the MAC address and still nothing. I chose 'DENY' internet access during selected days and hours and then selected the 'everyday' checkbox. I enabled the status and saved the changes and my computer is still able to browse websites. strange cause i was able to do it before with my other linksys router (non wireless). Any ideas to what the prob. could be?
  4. Ray

    Ray Network Guru Member

    That is pretty much what I do, with the exception of the first rule, I allow internet access from 10am to 9pm Sunday thru Thursday and on the second rule, I allow internet access from 10am to 11pm Friday and Saturday. I have defined a specific IP as well as MAC address.

    In either of the above rules, the restrictions will not be enforced.
  5. imasterxx

    imasterxx Network Guru Member

    im not sure if this makes any difference or not but i'm not using dhcp. the router IP is and the ip's for the PC's are through I also turned off DMZ and things still wont work. :cry:
  6. Toxic

    Toxic Administrator Staff Member

    just a thought, did you create a policy name?

    I found one workaround once where you alow timings to allow access. then set a new policy (policy 2) to block ALL access for the full 24hrs.

    the first policy overrided the block at the 1st policies times.
  7. Ray

    Ray Network Guru Member

    Yes, policy names are created for both.

    If I understand correctly, I should set policy one to allow access from 10a till 9p. Policy two should be to deny access for the entire 24 hours?
  8. Toxic

    Toxic Administrator Staff Member

    yeah thats the way i got it to work, as i said before it was a workaround. afaik the access restrictions doesn't really work correctly. it needs to be re-written me thinks
  9. vaxxman

    vaxxman Guest

    I have it sort of working on WRT54GS with HyperWRT 1.3. I have two policies:

    Policy1 Deny Everyday 12:00AM to 4:00PM
    Policy2 Deny Everyday 6:00PM to 11:55PM

    This allows access between 4PM and 6PM everyday. The reason for two policies is because the start time has to be earlier than the end time.

    I use to limit my youngest to two hours a day on the Internet. I put the MAC address(es) of his ethernet adapter and his wireless adapter into the PC list. This prevents him from getting on the Internet even if he changes his IP address or tries to run a long cable to one of my Ethernet switches... B-)

    Doing it this way sets up a crontab that looks like this:

    00 0 * * 0-6 root filter add 1
    00 16 * * 0-6 root filter del 1
    00 18 * * 0-6 root filter add 2
    55 23 * * 0-6 root filter del 2

    This would not be my prefered method of doing this, but it does work, as long as the router keeps the correct time. NTP seems to do this OK on my WRT54GS.

    Hope this helps...

  10. Sbelew

    Sbelew Network Guru Member

    Access restrictions reboot

    Ok I have done as Toxic suggested, I set a policy to deny access 24/7 , then I created my policies to allow access during the day and weekends.


    Do I need to reboot the router for each policy to break the Yahoo Messenger and AOL messenger connections? If so, do i reboot it right after the deny policy goes back into effect each time? It took me 7 policies to allow 3 kids access at various times.

    If so, is there someone who could help me write a crontab and get it into the router to make this all work?

    Thank You
  11. NateHoy

    NateHoy Network Guru Member

    Re: Access restrictions

    One way: Under "Advanced Routing", set up a custom route for that IP address (or addresses) to go to the Internet, then set all the others to the LAN so they don't route out.
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice