For the love of god i’ve been trying for hours trying to block a handfull of ports to our clients that connect via PPPoE.
Is there any way to do this???
I’ve tried adding a forward rule but that di absolutly nothing.
Then i tried a specific user eg <<pppoe_username>> and hmm that did it.
But that sucks im not about to make 20 million rules.
I’d like to block all on the specific WLAN ethernet card.
Please help
Thanks a mill
You can set the firewall chain for in and out traf. at ppp profil page. Then you just creat a new chain at ip firewall and add a rule that blocks traf you vant to stop. Its just a first idea as i read your post, but I think it works. Try, and report.
I’ve tried that but did not work.
What i’m seeing is that the PPPoE connections are dynamic thus they are all unique and not like trying to stop trafic to a certain nic card.
Maybe i’m doing it wrong! ???
I think i got it, it’s working well.
This is what i’ve done (Please tell me if there is a better way)
In the forward chain i created a rule.
Src Address xx.xx.xx.0/24 which is the entire pool that gets allocated to PPPoE clients.
All interfaces all protocols
Jump to new Filter Chain that i made called PPPoE_Rules
in there i state that anything comming from source xx.xx.xx.0/24 on port 80 to reject it and i think i will put all other ports such as ftp, smtp, pop etc. in there so that i can use this new chain to monitor the clients on PPPoE.
I think this is the right way? … YES? / NO? please reply
Thanks