If someone knows how to correct this behaviour, please post.Īdded by - Ptruman 14:49, 2 June 2008 (CEST)įwbuilder works with files created using iptables-save - which is NOT part of DD-WRT. Otherwise the script exits with an error (+ /sbin/modeprobe ip_conntrack_pptp modeprobe: could not parse p) and doesn't load the firewall policies. If you want to know about the free space on your jffs partition enter "df" in the SSH console.Ĭomment: If you have started the PPTP Server, you must not check Load Modules (Double Click on Firewall, choose Firewall settings, choose tab script options and remove the tick on Load Modules). Nvram set rc_firewall=/jffs/firewall/firewall.fw In the following dialog enter username "root" and your password. On request choose "compile" and than "install". Now build your firewall rules.Īfter building your rules, choose Rules -> Install. Expand the tree under my firewall and double click on "outside (dyn ext)" and change the Name to "ppp0" if you use PPPoE to connect to the internet. Enter the path for pscp.exe and plink.exe. Now select from the menu Edit -> Preferences tab SSH. Choose tab installer and put in the field "Directory on the firewall where script should be installed" "/jffs/firewall/". Fill in the field Output file name: "firewall.fw". (Do not use Linksys/Sveasoft here, because you don't want to store the data in the NVRAM now, but in the jffs file system)Ĭhoose "Firewall Settings" and choose tab compiler. Choose template "linksys firewall" and press Finish.ĭouble Click on my firewall and cange Version to "1.2.9 or later". Check "Use preconfigured tamplate firewall objects". Choose OS the new firewall runs on: "Linksys/Sveasoft". Choose firewall software is running "iptables". Enter the name of the new opject below: something like "my firewall". Right click on "Firewalls" and choose "New Firewall". Now start Putty.exe or any other SSH-program and login (username: root + your password). Then go to Administration -> Services and enable SSHD. If you not have done until now, go to Administration -> Management and enable JFFS2 and Clean JFFS2 JFFS2. Sure you also can use it without jffs2, but then you are somewhat limited with the size of the firewall you can build.įlash the Linksys device with dd-wrt v23 final (Go to Administration -> Firmware Upgrade). Use of FWBuilder 2.0.10-1 with DD-WRT V23 + JFFS2 Try if you can to ping your router while it's booting. (My recommendation: press reset and hold while you power on, reset at least for 30 seconds and power off. If that happens, follow some descriptions how to recover from a bad firmware flash. OTHERWISE YOU ARE OUTSIDE OF YOUR WALL (THAT'S REALLY SECURE, ISN'T IT?). NEVER FORGET TO ALLOW SSH ACCESS IN A RULE TO YOUR FIREWALL. The basic ruleset is not secure because it allows any connection to extern. There are some points, you should take care of: If you confirm this page, you'll see a dialogue about installing the firewall. The username is "root" and you need to enter your password here. Firewall Builder needs the connection details now. The next step is compiling your firewall rules. This will prompt you, where to save the fwbuilder file on your computer for later configuration. Press the icon with the computer and the two arrows. Now you are ready to install your first iptables firewall with Firewall Builder.You can download them free of charge on the net. On Windows I use pscp.exe and plink.exe as recommended. Just go to edit->configuration and choose the tab "SSH". The next step is to tell Firewall Builder where to find the ssh tools.(Just do a right click on the 0 and choose "delete rule".) In my opinion, the first one can't work (or better - this rule will break your DHCP for the first configuration.) So delete rule number 0. In the big field you see the rules of your firewall. Firewall Builder will prompt you, that it can do some changes for you automatically. Double Click this interface and change the name from "vlan1" to "ppp0". There should be one interface, called "outside (dyn ext)". (If you need to use PPPoE to connect to the internet) Now you see your firewall object on the left side under the folder firewalls.First change the version in the Firewall box (the version field is directly under the platform field) to "1.2.9 or later" and commit your changes. Now you'll be presented with your firewall.Now you are presented with the different templates.Check the box to use a preconfigured firewall. The firewall-software in your case is "iptables" and the operating system is "Linksys/Sveasoft". Now you are prompted for the name (Give it some like DD-WRT for example). That's done by right click to firewalls -> create new firewall. After starting the fwbuilder software, first you need to create the firewall object.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |