At first … I’m not responsible, if you brick your router by using this documention. If your fear it would be possible, stop HERE!
The following NVRAM-Settings need to take place:
#!/bin/sh
#Port 0 into WAN, 5 Router themselv
nvram set vlan1hwname=et0
nvram set vlan1ports="0 5"
#Port 2, 3 and 4 into LAN, 5 Router themselv
nvram set vlan0hwname=et0
nvram set vlan0ports="2 3 4 5*"
# Port 1 into DMZ, 5 Router themselv
nvram set vlan2hwname=et0
nvram set vlan2ports="1 5*"
# Static IP-Address for DMZ-IF
nvram set dmz_ifname=vlan2
nvram set dmz_proto=static
nvram set dmz_ipaddr=172.18.20.5
nvram set dmz_netmask=255.255.255.0
# save all the stuff
nvram commit
To bring automaticaly up the dmz-if, you need to add “ifup dmz” with:
# sed “s/ifup lan/ifup lan@ ifup dmz/” \
/etc/init.d/S40network | tr ‘@’ ‘n’ > /etc/init.d/S40network
To allow traffic forwarded by the new if, you will maybe add for example the following into “/etc/firewall.users”:
#!/bin/sh
DMZ=$(nvram get dmz_ifname)
#Allow Forward from DMZ into WAN
iptables -A FORWARD -i $DMZ -o $WAN -j ACCEPT
#Allow Forward from DMZ into LAN
iptables -A FORWARD -i $DMZ -o $LAN -j ACCEPT
#Allow Forward from LAN into DMZ
iptables -A FORWARD -i $LAN -o $DMZ -j ACCEPT
But it will be better to specify exactly, what services are allowed from and into DMZ!
Today I was finally soldering the Serial Mod I got from Stephanie Lange and got the serial console working on a WRT54G V2.0 model.
Welcome to minicom 2.1
OPTIONS: History Buffer, F-key Macros, Search History Buffer, I18n
Compiled on Mar 29 2005, 09:39:09.
Press CTRL-A Z for help on special keys
BusyBox v1.00 (2005.07.08-18:02+0000) Built-in shell (ash)
Enter ‘help’ for a list of built-in commands.
_______ ________ __
| |.—–.—–.—–.| | | |.—-.| |_
| - || _ | -__| || | | || _|| _|
|_______|| __|_____|__|__||________||__| |____|
|__| W I R E L E S S F R E E D O M
WHITE RUSSIAN (RC1) ——————————-
* 2 oz Vodka Mix the Vodka and Kahlua together
* 1 oz Kahlua over ice, then float the cream or
* 1/2oz cream milk on the top.
—————————————————
root@gollum:/# AT S7=45 S0=0 L1 V1 X4 &c1 E1 Q0
/bin/ash: c1: not found
root@gollum:/# /bin/ash: AT: not found
[1] + Done(127) AT S7=45 S0=0 L1 V1 X4
root@gollum:/#
root@gollum:/#
root@gollum:/# reboot The system is going down NOW !!
watchquag Sending SIGTERM to all processes.
Sending SIGKILL to all processes.
Please stand by while rebooting the system.
Restarting system.
Please stand by while rebooting the system…
00:00.0 RAM memory: Broadcom Corporation: Unknown device 0803
00:01.0 Ethernet controller: Broadcom Corporation: Unknown device 4711
00:02.0 Ethernet controller: Broadcom Corporation: Unknown device 4713
00:03.0 Modem: Broadcom Corporation: Unknown device 4712
00:04.0 USB Controller: Broadcom Corporation: Unknown device 4715
00:05.0 PCI bridge: Broadcom Corporation: Unknown device 0804
00:06.0 MIPS: Broadcom Corporation: Unknown device 0805
00:07.0 FLASH memory: Broadcom Corporation: Unknown device 0811
00:08.0 Ethernet controller: Broadcom Corporation: Unknown device 4713
01:00.0 Host bridge: Broadcom Corporation: Unknown device 4710 (rev 01)
01:08.0 Network controller: Broadcom Corporation BCM94306 802.11g (rev 02)
