Search

You can find the results of your search below.

Firewall configuration /etc/config/firewall @docs:guide-user:firewall
84 Hits, Last modified:
====== Firewall configuration /etc/config/firewall ====== OpenWrt's firewall management application [[docs:guide-user:firewall:overview|firewall]] is mainly configured through ''/etc/c
NAT examples @docs:guide-user:firewall:fw3_configurations
69 Hits, Last modified:
====== NAT examples ====== The [[docs:guide-user:firewall:overview|fw4 application]] has extensive support f... ing the life of the IPv4 protocol. As with other firewall section, this section will not delve into NAT bac... ===== NAT diagnostics ===== See [[docs:guide-user:firewall:netfilter_iptables:netfilter_management|Netfilter... onnection tracking. For public servers behind the firewall the DNAT target is used to translate the public I
Samba @docs:guide-user:services:nas
53 Hits, Last modified:
Is your Samba configuration right? - Does your firewall allow clients to access the service on your route... curity by neatly setting up the [[docs:guide-user:firewall:start|Firewall Documentation]]. ==== Start on boot ==== After installing the packages described in Instal... ctions if you use NAT. <code bash> uci -q delete firewall.samba_nsds_nt uci set firewall.samba_nsds_nt="rul
Guest Wi-Fi extras @docs:guide-user:network:wifi:guestwifi
50 Hits, Last modified:
ry. The goal here is to alter the default OpenWRT firewall rules allowing specific ICMP and ICMPv6 types fro... nd "Allow-ICMPv6-Input". <code bash> # Configure firewall uci rename firewall.@rule[1]="icmp" uci rename firewall.@rule[5]="icmp6" uci set firewall.icmp.src="*" uci set firewall.icmp6.s
WireGuard multi-client server automated @docs:guide-user:services:vpn:wireguard
50 Hits, Last modified:
erver_IP="${interface}.1" export WG_${LAN}_server_firewall_zone="${LAN}" export quantity="4" # Change the nu... key" >/dev/null 2>&1 echo "Done" echo -n "Rename firewall.@zone[0] to lan and firewall.@zone[1] to wan... " uci rename firewall.@zone[0]="lan" uci rename firewall.@zone[1]="wan" echo "Done" # C
OpenVPN extras @docs:guide-user:services:vpn:openvpn
44 Hits, Last modified:
lare the VPN interface. <code bash> uci del_list firewall.wan.device="tun+" uci add_list firewall.wan.network="vpn" uci commit firewall service firewall restart uci -q delete network.vpn uci set network.vpn="interface" uci set network.vpn.prot
WireGuard road-warrior automated @docs:guide-user:services:vpn:wireguard
42 Hits, Last modified:
* IPv4 and IPv6 traffic is subject to normal firewall rules based on the zone assigned to the WireGuard... #export WG_SERVER_PORT="51820" ## The (existing) firewall zone for the interface that will receive ## IPv4-... c #export WG_WAN4_FWZONE="wan" ## The (existing) firewall zone name for the new WG interface #export WG_FWZ... v6 config below ############## ## The (existing) firewall zone for the interface that will receive ## IPv6-
Guest Wi-Fi using CLI @docs:guide-user:network:wifi:guestwifi
40 Hits, Last modified:
dditional separated guest network and a new guest firewall zone for your OpenWrt device. That is, to create ... et dhcp.${NET_ID}.leasetime=1h commit dhcp delete firewall.${NET_ID} set firewall.${NET_ID}=zone set firewall.${NET_ID}.name=${NET_ID} set firewall.${NET_ID}.network=${NET_ID} set firewall.
Filtering traffic with IP sets by DNS @docs:guide-user:firewall:fw3_configurations
37 Hits, Last modified:
ackages:pkgdata:resolveip]] and [[docs:guide-user:firewall:overview|firewall]] with [[docs:guide-user:firewall:firewall_configuration#ip_sets|IP sets]] to resolve and filter domains. ===== Goals ===== * Filter LAN c
DNS hijacking @docs:guide-user:firewall:fw3_configurations
37 Hits, Last modified:
===== Web interface instructions ===== Configure firewall to intercept DNS traffic. - Navigate to **LuCI -> Network -> Firewall -> Port Forwards**. - Click **Add** and specify... ===== Command-line instructions ===== Configure firewall to intercept DNS traffic. <code bash> # Intercept DNS traffic uci -q delete firewall.dns_int uci set firewall.dns_int="redirect" uci s
Guest Wi-Fi basics @docs:guide-user:network:wifi:guestwifi
34 Hits, Last modified:
mit dhcp service dnsmasq restart </code> ==== 4. Firewall ==== Configure firewall for the guest network. Allow to forward traffic from the guest network to WAN. Allo... equests and DNS queries. <code bash> # Configure firewall uci -q delete firewall.guest uci set firewall.guest="zone" uci set firewall.guest.name="guest" uci set fire
WireGuard extras @docs:guide-user:services:vpn:wireguard
34 Hits, Last modified:
LAN zone on VPN client. <code bash> uci del_list firewall.wan.network="vpn" uci add_list firewall.lan.network="vpn" uci commit firewall service firewall restart </code> ==== IPv6 site-to-site ==== Provide IPv6 site-to-site connectivity assumi
IPv6 firewall examples @docs:guide-user:firewall:fw3_configurations
33 Hits, Last modified:
====== IPv6 firewall examples ====== ===== Port accept for IPv6 ===== To open port 80 so that a local webser... on passing a prefix down to your LAN and want to firewall appropriately it is better to create a separate firewall zone as described below. IPv6 packets may not be ... n6'', add the following sections to ''/etc/config/firewall'' to create a new zone ''wan6''. <code bash> con
IPsec Firewall @docs:guide-user:services:vpn:strongswan
33 Hits, Last modified:
====== IPsec Firewall ====== When configuring firewalls, tunnels and zones we always have to keep security i... will find a detailed description of how to setup firewall rules for IPsec VPN connections. The experienced ... able in the POSTROUTING nat table**. At this late firewall stage the system will discover for the first time... packet. ===== Zones ===== As in many commercial firewall solutions OpenWrt works with zones. A zone is mor
PBR with netifd @docs:guide-user:network:routing
32 Hits, Last modified:
event traffic leaks. * Enable [[docs:guide-user:firewall:fw3_configurations:fw3_nat#ipv6_nat|IPv6 NAT or N... stinations matching IP set. Mark LAN traffic with firewall to apply custom routing. <code bash> for IPV in 4 6 do uci -q delete firewall.wan_set${IPV%4} uci set firewall.wan_set${IPV%4}="ipset" uci set firewall.wan_set${IPV%4}.name="wan${IPV%4}
The UCI system @docs:guide-user:base-system
29 Hits, Last modified:
E-MailRelay @docs:guide-user:services:email
26 Hits, Last modified:
Routed Client @docs:guide-user:network
24 Hits, Last modified:
Network File System (NFS) @docs:guide-user:services:nas
24 Hits, Last modified:
Zerotier @docs:guide-user:services:vpn
23 Hits, Last modified:
CrowdSec @docs:guide-user:services
21 Hits, Last modified:
Using multiple WAN IPs @docs:guide-user:network:wan
21 Hits, Last modified:
Tor client @docs:guide-user:services:tor
21 Hits, Last modified:
PPTP extras @docs:guide-user:services:vpn:pptp
21 Hits, Last modified:
OpenWrt as a Docker Image @docs:guide-user:virtualization
20 Hits, Last modified:
Tor extras @docs:guide-user:services:tor
20 Hits, Last modified:
Tinyproxy @docs:guide-user:services:proxy
17 Hits, Last modified:
OpenVPN server @docs:guide-user:services:vpn:openvpn
17 Hits, Last modified:
PPPoSSH server @docs:guide-user:services:vpn:pppossh
17 Hits, Last modified:
PPTP server @docs:guide-user:services:vpn:pptp
17 Hits, Last modified:
Tinc server @docs:guide-user:services:vpn:tinc
17 Hits, Last modified:
WireGuard server @docs:guide-user:services:vpn:wireguard
17 Hits, Last modified:
PPPoSSH extras @docs:guide-user:services:vpn:pppossh
16 Hits, Last modified:
Tinc extras @docs:guide-user:services:vpn:tinc
16 Hits, Last modified:
MultipathTCP and OpenWrt @docs:guide-user:network
14 Hits, Last modified:
Routed AP @docs:guide-user:network:wifi
14 Hits, Last modified:
IP set extras @docs:guide-user:advanced
13 Hits, Last modified:
IPv4/IPv6 transition technologies @docs:guide-user:network
13 Hits, Last modified:
nftables @docs:guide-user:firewall:misc
11 Hits, Last modified:
ISP Configurations @docs:guide-user:network:wan
11 Hits, Last modified:
µMurmur @docs:guide-user:services:voip
11 Hits, Last modified:
OpenWrt in QEMU @docs:guide-user:virtualization
10 Hits, Last modified:
PPTP client @docs:guide-user:services:vpn:pptp
10 Hits, Last modified:
Firewall components @docs:guide-user:firewall
9 Hits, Last modified:
Honeypots @docs:guide-user:services
9 Hits, Last modified:
IPv6 configuration @docs:guide-user:network:ipv6
9 Hits, Last modified:
OpenVPN client @docs:guide-user:services:vpn:openvpn
9 Hits, Last modified:
WireGuard client @docs:guide-user:services:vpn:wireguard
9 Hits, Last modified:
Tunneling interface protocols @docs:guide-user:network
8 Hits, Last modified:
IPTV / UDP multicast @docs:guide-user:network:wan
7 Hits, Last modified:
Tailscale @docs:guide-user:services:vpn:tailscale
7 Hits, Last modified:
DSA Mini-Tutorial @docs:guide-user:network:dsa
6 Hits, Last modified:
Lighttpd webserver @docs:guide-user:services:webserver
6 Hits, Last modified:
LuCI – Technical Reference @docs:techref
5 Hits, Last modified:
Firewall overview @docs:guide-user:firewall
5 Hits, Last modified:
Wide area Wi-Fi coverage @docs:guide-user:network:wifi
5 Hits, Last modified:
AdGuard Home @docs:guide-user:services:dns
5 Hits, Last modified:
Squid @docs:guide-user:services:proxy
5 Hits, Last modified:
Multicast DNS Daemon @docs:guide-developer
4 Hits, Last modified:
UCI defaults @docs:guide-developer
4 Hits, Last modified:
DHCP and DNS examples @docs:guide-user:base-system
4 Hits, Last modified:
OpenWrt security hardening @docs:guide-user:security
4 Hits, Last modified:
Network Components @docs:guide-user:network:architecture
4 Hits, Last modified:
Bridge mode @docs:guide-user:network:wan
3 Hits, Last modified:
Internet connection @docs:guide-user:network:wan
3 Hits, Last modified:
Smartphone USB tethering @docs:guide-user:network:wan
3 Hits, Last modified:
Introduction to 802.1X @docs:guide-user:network:wifi
3 Hits, Last modified:
Pseudowire @docs:guide-user:services:vpn
3 Hits, Last modified:
PPPoSSH client @docs:guide-user:services:vpn:pppossh
3 Hits, Last modified:
WireGuard peers @docs:guide-user:services:vpn:wireguard
3 Hits, Last modified:
User guide @docs:guide-user
2 Hits, Last modified:
The Boot Process @docs:techref
2 Hits, Last modified:
Build system usage @docs:guide-developer:toolchain
2 Hits, Last modified:
Hotplug @docs:guide-user:base-system
2 Hits, Last modified:
Logging messages @docs:guide-user:base-system
2 Hits, Last modified:
Secure access to your router @docs:guide-user:security
2 Hits, Last modified:
Performance @docs:techref:hardware
2 Hits, Last modified:
IPv4 configuration @docs:guide-user:network:ipv4
2 Hits, Last modified:
Splitting VLANs @docs:guide-user:network:vlan
2 Hits, Last modified:
Dual VPN with mwan3 @docs:guide-user:routing:examples
2 Hits, Last modified:
NFS share configuration @docs:guide-user:services:nas
2 Hits, Last modified:
Siproxd on OpenWrt intro @docs:guide-user:services:voip
2 Hits, Last modified:
Cloudflare tunnel @docs:guide-user:services:vpn
2 Hits, Last modified:
Nginx webserver @docs:guide-user:services:webserver
2 Hits, Last modified:
oxnas @docs:techref:hardware:soc
2 Hits, Last modified:
Multiwan @docs:guide-user:network:wan:multiwan
2 Hits, Last modified:
The Mesh11sd Project @docs:guide-user:network:wifi:mesh
2 Hits, Last modified:
OLSR Mesh @docs:guide-user:network:wifi:mesh
2 Hits, Last modified:
Tinc client @docs:guide-user:services:vpn:tinc
2 Hits, Last modified:
procd init scripts @docs:guide-developer
1 Hits, Last modified:
OpenWrt Starter FAQ @docs:guide-quick-start
1 Hits, Last modified:
Hotplug -- Legacy @docs:techref
1 Hits, Last modified:
odhcpd @docs:techref
1 Hits, Last modified:
Networking @docs:guide-developer:networking
1 Hits, Last modified:
DDNS client configuration @docs:guide-user:base-system
1 Hits, Last modified:
Dropbear configuration @docs:guide-user:base-system
1 Hits, Last modified:
Command-line interpreter @docs:guide-user:base-system
1 Hits, Last modified:
Firewall configuration @docs:guide-user:firewall
1 Hits, Last modified:
LuCI essentials @docs:guide-user:luci
1 Hits, Last modified:
High availability @docs:guide-user:network
1 Hits, Last modified:
OpenWrt as client device @docs:guide-user:network
1 Hits, Last modified:
OpenWrt as router device @docs:guide-user:network
1 Hits, Last modified:
LOG MESSAGES @docs:guide-user:perf_and_log
1 Hits, Last modified:
VirtualBox Advanced @docs:guide-user:virtualization
1 Hits, Last modified:
miniupnpd @docs:guide-user:firewall:upnp
1 Hits, Last modified:
PulseAudio @docs:guide-user:hardware:audio
1 Hits, Last modified:
IPv6 extras @docs:guide-user:network:ipv6
1 Hits, Last modified:
Routing basics @docs:guide-user:network:routing
1 Hits, Last modified:
SQM Details @docs:guide-user:network:traffic-shaping
1 Hits, Last modified:
VLAN @docs:guide-user:network:vlan
1 Hits, Last modified:
Poor Man's Bridge Mode @docs:guide-user:network:wan
1 Hits, Last modified:
DDNS client @docs:guide-user:services:ddns
1 Hits, Last modified:
DoT with Unbound @docs:guide-user:services:dns
1 Hits, Last modified:
Unbound @docs:guide-user:services:dns
1 Hits, Last modified:
CIFS Client @docs:guide-user:services:nas
1 Hits, Last modified:
FTP servers @docs:guide-user:services:nas
1 Hits, Last modified:
NFS client @docs:guide-user:services:nas
1 Hits, Last modified:
NTP client / NTP server @docs:guide-user:services:ntp
1 Hits, Last modified:
ZNC IRC network bouncer @docs:guide-user:services:proxy
1 Hits, Last modified:
Autossh @docs:guide-user:services:ssh
1 Hits, Last modified:
Asterisk @docs:guide-user:services:voip
1 Hits, Last modified:
Broadcom BCM47xx @docs:techref:hardware:soc
1 Hits, Last modified:
MWAN with netifd @docs:guide-user:network:wan:multiwan
1 Hits, Last modified:
IPsec site-to-site @docs:guide-user:services:vpn:libreswan
1 Hits, Last modified:
  • Last modified: 2023/04/20 18:58
  • by icecream