FOR TIPS, gUIDES & TUTORIALS

subscribe to our Youtube

GO TO YOUTUBE

14455 questions

17168 answers

28195 comments

0 members

We are migrating to our new platform at https://community.teltonika.lt. Moving forward, you can continue discussions on this new platform. This current platform will be temporarily maintained for reference purposes.
0 votes
127 views 0 comments
by anonymous
I would like to block all traffic except some dns.
the webfilter allows to autauriser the dns but lets pass the ip traffic.
would you have a solution? 
Thanks

2 Answers

0 votes
by anonymous

Hello,

  

The best way to achieve your solution would be by using a Traffic Rule. The rules can be configured by navigating to Network → Firewall → Traffic Rules.

The first rule will be used to allow the wanted traffic to pass through:

  • Select Open ports on the router;
  • Create any name;
  • For protocol, select Other;
  • For port, enter 0 (it will be disregarded since the protocol is selected as any);
  • Press Add;
  • When the advanced configuration window opens up, make sure that the Source zone is set to lan;
  • Destination address is the IP address of the traffic you'd like to allow through (multiple addresses can be added);
  • Destination zone needs to be set to wan;
  • Make sure that the Action is Accept;
  • Press Save & Apply;
Now a rule blocking everything else is needed. I won't rewrite all of the steps, but what will be different is:
  • Source IP address: left empty;
  • Source zone: lan;
  • Destination zone: wan;
  • Action: Drop or Reject (Reject will notify the user that the requests were blocked, while Drop will drop them silently);
And that should be it! 
The router may need to be restarted in order for the changes to take effect.
  
Best regards,
DaumantasG
0 votes
by anonymous

hello,

thank you for your answer but I would like to dynamically authorize the ips corresponding to the dns.
example: I would like to authorize *lemonde.fr:80.
Thank you for your help.
Anthony