I was wondering if anyone could give me directions on restricting access between VLANs or Networks? I tried adding Forward Filter Rules using Source and Destination Interface but I either block all access or none. I also tried the Firewall Module and had success but that only blocks TCP and UDP. I didn't see an option to use networks as a criteria.
I'm really trying to setup Untangle to act as a true bridge. This is another reason I guess using Untangle in bridge mode is a pain because I will have to rules here and at my firewall. I don't want Untangle to route between bridged VLANs.
PS
I've read the cardinal rules multiple times but am trying to figure out how to implement them ;)
Here is my routing table
I'm really trying to setup Untangle to act as a true bridge. This is another reason I guess using Untangle in bridge mode is a pain because I will have to rules here and at my firewall. I don't want Untangle to route between bridged VLANs.
PS
I've read the cardinal rules multiple times but am trying to figure out how to implement them ;)
Here is my routing table
Code:
= IPv4 Rules =
0: from all lookup local
100: from all fwmark 0xfb00/0xff00 lookup 100
32766: from all lookup main
32767: from all lookup default
365000: from 192.168.0.9 lookup uplink.1
366001: from all fwmark 0x100/0xff00 lookup uplink.1
366900: from all lookup uplink.1
= IPv4 Table main =
192.168.0.1 dev br.eth0 scope link
192.168.4.0/24 dev br.eth0-40 proto kernel scope link src 192.168.4.2
192.168.3.0/24 dev br.eth0-30 proto kernel scope link src 192.168.3.2
192.168.2.0/24 dev br.eth0-20 proto kernel scope link src 192.168.2.2
192.168.1.0/24 dev br.eth0-10 proto kernel scope link src 192.168.1.2
192.168.0.0/24 dev br.eth0 proto kernel scope link src 192.168.0.9
= IPv4 Table balance =
= IPv4 Table uplink.1 =
default via 192.168.0.1 dev br.eth0
= IPv4 Route Rules =
= IPv6 Rules =
0: from all lookup local
32766: from all lookup main
= IPv6 Table main =
fe80::/64 dev eth1 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev eth0 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev br.eth0 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev eth1.10 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev eth0.10 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev br.eth0-10 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev eth1.20 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev eth0.20 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev br.eth0-20 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev eth1.30 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev eth0.30 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev br.eth0-30 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev eth1.40 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev eth0.40 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
fe80::/64 dev br.eth0-40 proto kernel metric 256 mtu 1500 advmss 1440 hoplimit 4294967295
= IPv6 Table uplink.1 =