dslreports logo
 
    All Forums Hot Topics Gallery
spc
uniqs
17

Brano
I hate Vogons
MVM
join:2002-06-25
Burlington, ON

Brano to Caden

MVM

to Caden

Re: ZyWall USG 20W - Block Wireless Administration

Create appropriate firewall rules to block/allow access to ZyWall as you desire.

Caden
@sbcglobal.net

Caden

Anon

Thanks Brano... but how do I single out the interface?

I tried the rule BLOCK from WLAN_1-1 to (object) ZyWall (192.168.1.1) and this made all wifi traffic not work.

Also, if this had worked properly I would have to make seperate objects for 10.59.1.1 and 192.168.2.1 with my default out-of-box config (2 lans enabled).

So the problems are
1. My firewall rule didn't work
2. It would require 3 rules for 3 objects by default? It seems like there should be an obvious, easy way to keep people out of this area.
Caden

Caden to Brano

Anon

to Brano
Sorry Brano, I forgot to mention that also I tried changing the default firewall rule for WLAN to ZYWall to block or reject and that also keeps wifi users off the admin area but also stops all internet browsing....

I want to allow WLAN to WAN... but Block WLAN to ZyWall.

I guess I could try to block the website 192.168.1.1, 192.168.2.1, 10.59.1.1? I just thought there might be a simple way.

Anyways thanks again for replying!

Brano
I hate Vogons
MVM
join:2002-06-25
Burlington, ON
(Software) OPNsense
Ubiquiti UniFi UAP-AC-PRO
Ubiquiti NanoBeam M5 16

Brano

MVM

It stops internet browsing because you block all services!
You need to leave enabled DHCP and DNS for WLAN to hit the ZyWall.

You may also want to read this »Secure your USG - quick how-to

Caden
@cableone.net

Caden

Anon

Brano, thanks for the how-to link... that is very useful!

I think this issue is resolved. Thanks to both Anav and Brano.

Gork
Ou812ic
join:2001-10-06
Bountiful, UT

Gork

Member

They both pretty much rawk.