WIth Kong's firmware, or straight DDWRT, is it possible to have client isolation (no LAN access) while still allowing Internet access? In AP mode, not router mode?
Unlock lightning-fast Microsoft support with Magenium’s Premier Services+. Our expert team ensures seamless integration, proactive monitoring, and rapid issue resolution. Save up to 40% on costs while enjoying priority access to top-tier engineers. Experience unparalleled support today!
Recent comments
- After the initial Kong Mod 2 years 2 months ago
- Working the EXACT same 2 years 2 months ago
- While the "5 Easy Steps" 2 years 2 months ago
- R8000P would be grate to see. 2 years 2 months ago
- Have a R8000 but ordered a 2 years 2 months ago
Well normally this does not work, as in ap mode you are using lan to connect to the internet thus you cannot block lan and have internet. This only works, by using vlans, which can be done, but requires also another router that will provide wan and you will have to create custom commands in order to route and block traffic from guest vlan.
Try playing with these commands
Deny access to a specific Subnet
iptables -I FORWARD -s 192.168.2.0/255.255.255.0 -j DROP
change the IP to your own
also
Deny access to a specific IP address range with Logging
iptables -I FORWARD -m iprange --src-range 192.168.1.10-192.168.1.13 -j logdrop
you can deny access to the range and exclude the gatway.
I got played around with these commands and got all clients to access the internet but not each other. You can also blcok all and then try opening just hte gatway port.
It may take some tweaking to suite your network.
commands taken form
http://www.dd-wrt.com/wiki/index.php/Iptables_command#Allow_HTTP_traffic...