OpenWrt Forum Archive

I want to block the udp traffic from the wireless network to the wan (internet) except for dns and other importants services, and the udp traffico from the wan(internet) to the internal wireless network, I try a lot of iptables command, but when I see with iptraf I still see udp traffic flow, I'm searching for the solution by myself for 3 weeks but nothing... if someone can help me, thanks.

P.D. I don't understand why my iptables command with the --protocol UDP aren't working, I see the traffiic and it's like if it's not working iptables udp filtering...

HELP ME PLEASE... right now I don't know what to do... I tryied everything I know about this subject...

P.D. 2: I'm using the following shapper:

Using /lib/modules/2.4.30/cls_u32.o
insmod: A module named cls_u32 already exists
tc qdisc add dev eth1 root handle 1: htb default 2
tc class add dev eth1 parent 1: classid 1:1 htb rate 968kbit burst 11k
tc class add dev eth1 parent 1:1 classid 1:2 htb rate 460kbit burst 11k
tc class add dev eth1 parent 1:1 classid 1:3 htb rate 1505kbit burst 510k
tc filter add dev eth1 protocol ip prio 1 u32 match ip dst 192.168.1.100/32 police rate 1505kbit burst 510k flowid 1:3
tc class add dev eth1 parent 1:1 classid 1:4 htb rate 1505kbit burst 510k
tc filter add dev eth1 protocol ip prio 1 u32 match ip dst 192.168.1.104/32 police rate 1505kbit burst 510k flowid 1:4
tc class add dev eth1 parent 1:1 classid 1:5 htb rate 1505kbit burst 510k
tc filter add dev eth1 protocol ip prio 1 u32 match ip dst 192.168.1.110/32 police rate 1505kbit burst 510k flowid 1:5
tc class add dev eth1 parent 1:1 classid 1:6 htb rate 546kbit burst 64k
tc filter add dev eth1 protocol ip prio 1 u32 match ip dst 192.168.1.101/32 police rate 546kbit burst 64k flowid 1:6
tc class add dev eth1 parent 1:1 classid 1:7 htb rate 746kbit burst 256k
tc filter add dev eth1 protocol ip prio 1 u32 match ip dst 192.168.1.102/32 police rate 746kbit burst 256k flowid 1:7
tc class add dev eth1 parent 1:1 classid 1:8 htb rate 256kbit burst 50k
tc filter add dev eth1 protocol ip prio 1 u32 match ip dst 192.168.1.103/32 police rate 256kbit burst 50k flowid 1:8
tc class add dev eth1 parent 1:1 classid 1:9 htb rate 256kbit burst 50k
tc filter add dev eth1 protocol ip prio 1 u32 match ip dst 192.168.1.105/32 police rate 256kbit burst 50k flowid 1:9
tc class add dev eth1 parent 1:1 classid 1:10 htb rate 96kbit burst 20k
tc filter add dev eth1 protocol ip prio 1 u32 match ip dst 192.168.1.105/32 police rate 96kbit burst 20k flowid 1:10

(Last edited by pochacoxxx on 23 Jun 2007, 16:34)