traviskijiji
New Around Here
Hi everyone,
This is my first time ever posting on a forum (any forum) so I'd like to thank everyone in advance for your advice.
I have flashed my N66U with Tomato Shibby. I am trying to configure Tomato to do something very specific and I'm getting lost, likely due to inexperience. Here's what I want:
VLAN 1 - Normal Internet
- DHCP
- SSID 'Normal'
- 192.168.1.1
- Sees local devices on VLAN 1, 2, 3
VLAN 2 - OpenVPN Client Tunnel
- DHCP
- SSID 'OpenVPN'
- Sees local devices on VLAN 1, 2, 3
- No outside Internet when/if OpenVPN connection disconnects
VLAN 3 - NAS
- Static IP only
- No WiFi
- Sees local devices on VLAN 1, 2, 3
- Cannot access outside Internet at all
VLAN 4 - Home Alarm System
- Static IP only
- No WiFi
- Sees local devices on VLAN 1,2, and 4
- This will eventually have a DMZ and port forwarding enabled for the alarm system to function
So far, I have created the following:
Basic > Network
br0 = 192.168.1.1
br1 = 192.168.2.1
br2 = 192.168.3.1
br3 = 192.168.4.1
Advanced > VLAN
VLAN 1 = Normal , Port 1, br0, 192.168.1.1
VLAN 2 = OpenVPN, Port 2, br1, 192.168.2.1
VLAN 3 = NAS, Port 3, br2, 192.168.3.1
VLAN 4 = Alarm, Port 4, br3, 192.168.4.1
VLAN 5 = WAN
Advanced > Virtual Wireless
eth1 (wl0) / br0
eth2 (wl1) / br0
wl0.1 / br0
wl0.2 / br1
I suspect I need to go to Advanced > Scripts and add some iptables rules here but I have no idea what I am doing. Trying to get the specified VLANs to see each other for local traffic is baffling me. I just want to make this as secure as possible.
Could someone please help me understand how to achieve the above-mentioned goal?
Thanks.
This is my first time ever posting on a forum (any forum) so I'd like to thank everyone in advance for your advice.
I have flashed my N66U with Tomato Shibby. I am trying to configure Tomato to do something very specific and I'm getting lost, likely due to inexperience. Here's what I want:
VLAN 1 - Normal Internet
- DHCP
- SSID 'Normal'
- 192.168.1.1
- Sees local devices on VLAN 1, 2, 3
VLAN 2 - OpenVPN Client Tunnel
- DHCP
- SSID 'OpenVPN'
- Sees local devices on VLAN 1, 2, 3
- No outside Internet when/if OpenVPN connection disconnects
VLAN 3 - NAS
- Static IP only
- No WiFi
- Sees local devices on VLAN 1, 2, 3
- Cannot access outside Internet at all
VLAN 4 - Home Alarm System
- Static IP only
- No WiFi
- Sees local devices on VLAN 1,2, and 4
- This will eventually have a DMZ and port forwarding enabled for the alarm system to function
So far, I have created the following:
Basic > Network
br0 = 192.168.1.1
br1 = 192.168.2.1
br2 = 192.168.3.1
br3 = 192.168.4.1
Advanced > VLAN
VLAN 1 = Normal , Port 1, br0, 192.168.1.1
VLAN 2 = OpenVPN, Port 2, br1, 192.168.2.1
VLAN 3 = NAS, Port 3, br2, 192.168.3.1
VLAN 4 = Alarm, Port 4, br3, 192.168.4.1
VLAN 5 = WAN
Advanced > Virtual Wireless
eth1 (wl0) / br0
eth2 (wl1) / br0
wl0.1 / br0
wl0.2 / br1
I suspect I need to go to Advanced > Scripts and add some iptables rules here but I have no idea what I am doing. Trying to get the specified VLANs to see each other for local traffic is baffling me. I just want to make this as secure as possible.
Could someone please help me understand how to achieve the above-mentioned goal?
Thanks.