Hi All,
I am having trouble adding a rule to block a specific mac-address after 22:30. initially i had it working (albeit without the starttime/stoptime) when i had the fire wall set up for each interface using the GUI. Now I have set up the zones I have tried using the CLI to add a rule but it fails on commit. I commited each line separately to see what caused the issue and it fails when I try to commit the source mac-address 00:00:00:00:00:00
The ruleset below is applied to the zone WAN from LAN.
note: action accept is just for testing purposes
default-action accept
rule 1 {
action accept
state {
established enable
related enable
}
}
rule 2 {
action drop
log enable
state {
invalid enable
}
}
rule 10 {
action accept
description "Test Block Iphone"
source {
mac-address 11:11:11:11:11:11
}
}
When I try to commit the source line of rule 10 i get the error below:
Error: [sudo /sbin/iptables-restore -n -v 2> /tmp/iptables.out] = 256 Iptables restore OK Commit failed
I have tried rebooting and upgrading the firmware to V1.91
any ideas?
thanks
