Menu
What's new
By:
Filters Better Search

Block incoming IP

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

mbeijen

mbeijen

New Around Here
For some reason, my router doesn't allow me to block an IP address.

I would like to block an IP from accessing my router/network.

I am using : ASUS RT-N66W with latest 374.40 build.

Any suggestions?

Thanks,
Marco
 
This is what iptables look like right now:

iptables -L

Chain INPUT (policy ACCEPT)
target prot opt source destination
DROP all -- 5.153.50.107-static.reverse.softlayer.com anywhere
DROP all -- anywhere anywhere state INVALID
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT all -- anywhere anywhere state NEW
ACCEPT all -- anywhere anywhere state NEW
ACCEPT udp -- anywhere anywhere udp spt:bootps dpt:bootpc
DROP all -- anywhere anywhere

Chain FORWARD (policy DROP)
target prot opt source destination
DROP all -- 5.153.50.107-static.reverse.softlayer.com anywhere
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
DROP all -- anywhere anywhere
DROP all -- anywhere anywhere state INVALID
ACCEPT all -- anywhere anywhere
DROP icmp -- anywhere anywhere
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere ctstate DNAT
ACCEPT all -- anywhere anywhere

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain FUPNP (0 references)
target prot opt source destination

Chain PControls (0 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere

Chain logaccept (0 references)
target prot opt source destination
LOG all -- anywhere anywhere state NEW LOG level warning tcp-sequence tcp-options ip-options prefix `ACCEPT '
ACCEPT all -- anywhere anywhere

Chain logdrop (0 references)
target prot opt source destination
LOG all -- anywhere anywhere state NEW LOG level warning tcp-sequence tcp-options ip-options prefix `DROP '
DROP all -- anywhere anywhere

With this one, connections are still coming through...
 
Just use the IP Address part 5.153.50.107 to drop.
 
Thanks for the anwer, however, iptables only uses IP's.

See:

admin@ROUTER:/tmp/home/root# iptables -L -n

Chain FORWARD (policy DROP)
target prot opt source destination
DROP all -- 5.153.50.107 0.0.0.0/0
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
DROP all -- 0.0.0.0/0 0.0.0.0/0
DROP all -- 0.0.0.0/0 0.0.0.0/0 state INVALID
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
DROP icmp -- 0.0.0.0/0 0.0.0.0/0
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate DNAT
ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
 
It's a reverse, use 107.50.153.5
 
It's not a reverse, I contacted the abuse department of the IP in question (5.153.50.107) and within 5 minutes the attack stopped.

However, I still would like to be able to stop this myself on router level.
 
Is the rule actually active?
Enter
Code: 
service restart_firewall
or reboot Router
 
You must log in or register to reply here.

Similar threads

elrengo
RT-AX88U Pro - Block YouTube on Smart TV
Replies
12
Views
1K
Makaveli
Makaveli
TanyaC
cannot add domain to router URL filter
Replies
15
Views
1K
TanyaC
TanyaC
B
Firewall lan - vpn?
Replies
0
Views
511
blast
B
A
How to allow incoming WAN connections for WireGuard clients?
Replies
5
Views
594
eibgrad
eibgrad
macster2075
Solved Help blocking incoming traffic
2
Replies
23
Views
2K
drinkingbird
drinkingbird
Similar threads
Thread starter Title Forum Replies Date
K Solved "Block internet access" does nothing Asuswrt-Merlin 7
R Addition of Block Internet Access Asuswrt-Merlin 5
K How to block LAN access for a wired device on ASUS Merlin (Firmware 3004.388.8_2)? Asuswrt-Merlin 12
M URL block List Asuswrt-Merlin 5
N IPv6 6RD tunnel block/allow by mac/IP Asuswrt-Merlin 3
elrengo RT-AX88U Pro - Block YouTube on Smart TV Asuswrt-Merlin 12
L "Block internet access" toggle in Client Status GUI doesn't stick Asuswrt-Merlin 3
C Is there any easy solution in Merlin for a VPN server that is hard to block/detect? Asuswrt-Merlin 13
C isp block dns over tls and poison any unencrypted dns resolution Asuswrt-Merlin 14
S Asus merlin: How to block communication between two device on the network? Asuswrt-Merlin 14

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 753 (members: 19, guests: 734)
Top