TikiHead DD-WRT Novice
Joined: 20 Jul 2016 Posts: 20
|
Posted: Fri May 26, 2017 12:33 Post subject: iptables vs SPI vs GUI firewall rules |
|
Hi all,
From a lot of Googling (including this thread: http://www.dd-wrt.com/phpBB2/viewtopic.php?p=679345, it sounds to me like the way the firewall works in DD-WRT is this: DD-WRT comes with a simple SPI firewall and then any rules I write in the firewall script section of the GUI are applied as well, and that's it. I can browse the files in my router and see these rules in tmp\.rc_firewall
BUT when I look at the file tmp\.ipt (which I assume is an iptables file), there are a lot of extra rules, including prerouting rules, forwarding, etc.
There's really not one good place that explains how the firewall works, because I thought it was just SPI + my rules, but now I see this third thing as well. Can anyone explain to me, finally, how exactly the firewall works in DD-WRT?
Also, if I install Firewall Builder, does it bypass all the rules configured in DD-WRT?
Thanks! |
|