標籤:openwrt 白名單 mac白名單 ip白名單 防火牆
通過修改防火牆設定檔來實現上網過濾。
設定檔 /etc/config/firewall
1、Mac白名單
在設定檔尾部添加如下:
config rule
option src lan
option dest wan
option src_mac 9C:D2:1E:F9:34:39
option target ACCEPT
config rule
option src lan
option dest wan
option src_mac 98:6C:F5:5B:11:BC
option target ACCEPT
config rule
option src lan
option dest wan
option target REJECT
以上規則解釋為:允許mac地址為9C:D2:1E:F9:34:39、98:6C:F5:5B:11:BC的兩款裝置上網,其他裝置拒絕轉外網
注意:
config rule
option src lan
option dest wan
option target REJECT
拒絕所有裝置轉外網的這段規則 要放在後面,防火牆規則貌似也是有優先順序的
設定檔修改成功後,重啟防火牆
# /etc/init.d/firewall restart
2、IP白名單
原理步驟同上
只需將規則中
option src_mac mac地址
改為
option src_ip 你要允許的IP地址
著作權聲明:本文為博主原創文章,未經博主允許不得轉載。
openwrt實現無線上網白名單
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
