Hi everyone!
I’ve been trying to block all traffic from/to a certain IP address correctly, but it doesn’t seem to be enough to add it with a ‘drop’ to the top of the firewall → input & firewall → output.
According to Torch there is still traffic being send to this particular address.
How do I enforce a 100% block of all traffic coming from/going to a specific IP?
You need to apply the rule to forwarded packets, I beleive. Input packets are those destined for the router itself and output packets are those generated by the router itself (like management traffic, for example)
'Hope that helps.
Guy
Thanks! That does the trick! The bad boy at that IP address was driving my NTP server crazy, somehow getting it to transmit a LOT of data back, clogging up the upload of my ADSL…
If/when he complains, I’ll tell him to go buy a sundial! 