IPTABLES question: how to block an interface to specific IP

bobcpg

Senior member
Nov 14, 2001
951
0
0
I am using the dd-wrt firmware on my Linksys router. I need to have the wireless clients not be able to access a spicific ip which is assigned to one of my wired clients. All clients are on the same subnet and should be able to access the internet. I would like to know what IPTABLES command I can issue to make this happen?

Per the dd-wrt documentation:
When using the -i or -o to define the physical interfaces, remember that by default:
vlan0 is the 4 LAN ports
vlan1 is the WAN port (ppp0 is the WAN interface when PPPoE is used)
eth1 is the WIFI
br0 is a bridge connecting the 4 LAN and the WIFI together

The LAN ip that I do not want the wireless clients to be able to communicate with is 192.168.1.5

An example IP of a wireless client would be 192.168.1.123

The router is setup simple:
Router IP: 192.168.1.1
Subnet: 255.255.255.0
DHCP starts at 192.168.1.100 and gives out 50 to both wired and wireless