- Joined
- Jul 21, 2006
- Location
- CYYZ Pearson
My router used for MLPPP'ing my DSL lines runs OpenWRT and I'd like to DMZ a port so it has wide open access to the internet(my Debian server of various purposes) while the other free port remains firewall'd for my home network.
Does these settings look like they'd do what I want?
In /etc/config/network:
In /etc/config/firewall:
In /etc/config/dhcp:
Does these settings look like they'd do what I want?
In /etc/config/network:
Code:
config 'switch' 'eth0'
stuff
stuff
option 'vlan2' 'dmz's-port internalconnecctionthing'
config 'interface' 'dmz'
option 'ifname' 'eth0.3'
option 'proto' 'static'
option 'ipaddr' '192.168.10.1'
option 'netmask' '255.255.255.0'
Code:
config 'zone'
option 'name' 'dmz'
option 'input' 'ACCEPT'
option 'output' 'ACCEPT'
option 'forward' 'REJECT'
config 'rule'
option 'src' 'dmz'
option 'proto' 'tcpudp'
option 'dest_port' '53'
option 'target' 'ACCEPT'
config 'rule'
option 'src' 'dmz'
option 'proto' 'udp'
option 'dest_port' '67'
option 'target' 'ACCEPT'
config 'rule'
option 'src' 'dmz'
option 'proto' 'tcp'
option 'dest_port' '5900' That's the standard VNC port... I think. I guess I'd also have to have an entry for the lan to forward the vnc port.
option 'target' 'ACCEPT'
Code:
config dhcp dmz
option interface dmz
option start 100
option limit 150
option leasetime 72h
Last edited:
