Firewall – connect to server in seperated lan (using openwrt)

firewallopenwrtrouterrouting

I am using openwrt with the following setup:

                 ---------------
                 |             |--- LAN1 192.168.1.1/24
WAN 194.X.X.X ---| openwrt-box |                                               ------------
                 |             |--- LAN2 192.168.2.1/24 --- 192.168.2.10/24 ---|  Server  |
                 ---------------                                               ------------

Firewall – Zone Settings

General Settings
Enable SYN-flood protection yes
Drop invalid packets        no
Input           accept
Output          accept
Forward         reject

Zone ⇒ Forwardings  Input   Output  Forward Masquerading    MSS clamping
LAN1 ⇒ WAN          accept  accept  reject  no              no
WAN ⇒ reject        reject  accept  reject  yes             yes
LAN2 ⇒ WAN          accept  accept  reject  no              no

I have a port forwarding from WAN to Server and everything is working fine, but: How can I connect from LAN1 to Server?

Do you need additional information?

Thanks

Best Answer

Finally I got a solution how to only allow to connect from LAN1 to Server on port 80 and 443:

In "Network->Firewall" go to page "Traffic Rules"
scroll down to "New forward rule"

Name Source zone Destination zone LAN1ToServer LAN1 LAN2
klick "Add and edit"
Enter Server ip in field "Destination address" and port ("80 443") in "Destination port" and "Save & Apply"

Best Answer

Related Solutions

Router – Can’t communicate between lan ports on openwrt router

Router – set route on OpenWRT for PPPoE and LAN

Related Topic