Command to disable wireless client?

Discussion in 'Tomato Firmware' started by Darkflame808, Apr 11, 2012.

  1. Darkflame808

    Darkflame808 Serious Server Member

    Hello everyone,

    please allow me to introduce myself. I'm new here. I'm Darkflame808 coming to you from Hawaii, I wanted to ask if anyone could assist me with a relatively simple problem that i'm just not smart enough to figure out. LOL

    I currently have a ASUS RT-N66U router that I purchased to replace my POS linksys 610n V1 router. I love it to death! Simple as that. I loaded up Tomato on it and wanted to know if this is possible.....

    My girlfriends kids each have a WDTV media box that ties into my synology server. They like to sneak on at night sometimes to watch movies when they should be in bed. I have tried to do the restrict access from 830pm-8am deal and it restricts internet usage but does not block local traffic (pulling movies from my NAS box).

    I have found that going into wireless access and disabling their boxes via MAC address works a treat but it's not an option in the access permissions page.

    Is there a command equivalent that could restrict a MAC address that I could run via Scheduler at a certain time? something like this for example

    Scheduler -> 830pm run command
    command: blockmac 01:23:45:67:89:ab
    Scheduler -> 800am run command
    command: unblockmac 01:23:45:67:89:ab

    I don't know the command equivalent of blocking a mac address. Can anyone offer any insights?

    Thank you very much for the assistance!
  2. Darkflame808

    Darkflame808 Serious Server Member

    I take it it's not possible using command line options? Hrmm can anyone think of an alternative? (aside from pull the plugs or manually punching in the wireless filters each night)? perhaps limiting the client to .00001kb/sec ? heheheh hmmmm....
  3. Planiwa

    Planiwa Network Guru Member

    You can assign static LAN-IPs to the users. That's much easier to manage than MAC adresses.

    You probably don't need (and are not using QOS).

    So, you could set up QOS to restrict some users -- e.g. in Crawl Class.

    Then simply turn on QOS overnight.

    service qos start # at night
    service qos stop # in the morning
  4. ryzhov_al

    ryzhov_al Addicted to LI Member

    Is QoS shapes LAN bridge? AFAIK, QoS applies only to WAN interface.
  5. Planiwa

    Planiwa Network Guru Member

    Ooops. Good catch!

    How about:

    Assign static IPs to the privileged users.
    Others get DHCP.
    Turn off DHCP over night.
  6. chocsoup

    chocsoup Networkin' Nut Member

    Wow. First world problems. Here's my suggestion.

    1. Bedtime is between xxPM and xx AM.
    2. Access logs will be checked if required.
    3. Anyone who is found to be using PCs, laptops, game consoles or mobile devices during bedtime will hand over all devices for x time (eg 3 days)
    4. If you are caught trying to cheat this then loss of privileges x2
  7. Planiwa

    Planiwa Network Guru Member

    But then, how will the unprivileged ones learn how to overcome technical "obstacles"?
  8. ryzhov_al

    ryzhov_al Addicted to LI Member

    Chocsoup is good dad, but we may turn back to technical "obstacles":)
    What if we will try to avoid using cron at all?
    $ iptables -I INPUT 1 -m time --timestart 21:00:00 --timestop 09:00:00 --days Mon,Tue,Wed,Thu,Fri,Sun,Sat -m mac --mac-source xx:xx:xx:xx:xx:xx -j DROP
    Will it work on the Tomato firmware?
  9. Planiwa

    Planiwa Network Guru Member

    I like the iptables approach much better -- no side-effects.
  10. phuque99

    phuque99 LI Guru Member

    Local LAN connection doesn't go through iptables. Could use the "radio off/on" command on cron and live without wireless during that time, or deal with the social problem socially instead of technically?
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice