Hi, I used ovislink 1120 with appro and this ap has function how isolated clients. Function named NETBIOS Filtering is something like that also in openwrt? And second function named NETBIOS Filtering, whitch filtering bad packet.....??? Thx

Client isolation is available in openwrt if you use a broadcom radio chip, there you have to set wl0_ap_isolate to 1 in order to isolate your clients. iptables should do the trick to block netbios.

THX

Do you have any tricks? (basic tricks)

Sure, here we is an example which blocks netbios :

iptables -A OUPTPUT -o <wireless device> --sport 137:139 -j DROP
iptables -A OUTPUT -o <wireless device> --dport 137:139 -j DROP

This will block any netbios traffic that goes out from your wireless interface.

You can also dedicate a subnet to your wireless clients and block any outcoming/incoming netbios traffic.

I get this error message:
iptables v1.3.3: Unknown arg `--dport'
Try `iptables -h' or 'iptables --help' for more information.
I have Asus 300G, openWrt RC4...

(Last edited by Gawein on 26 Aug 2006, 17:19)

Sorry, I forgot to specify the procotol :

iptables -A OUPTPUT -o <wireless device> -p tcp --sport 137:139 -j DROP
iptables -A OUTPUT -o <wireless device> -p tcp --dport 137:139 -j DROP

Thx for quick replay, but I have another error message: iptables: No chain/target/match by that name.
iptables -A OUPTPUT -o wl0 -p tcp --sport 137:139 -j DROP.

(Last edited by Gawein on 26 Aug 2006, 17:30)

Humm, grr, it is OUTPUT, not OUPTPUT, you could have figured this by yourself too

Lol I am noob. Thank for help.