Unifi port blocking on specific networks
-
Why not whitelist instead of blacklist?
-
Unless you have a USG, you don’t. That is a router job, not an Access point job.
-
@DustinB3403 said in Unifi port blocking on specific networks:
want to setup a custom wireless network and block specific ports on that network
You need a "mid-network" USG.
-
@JaredBusch and @scottalanmiller that's what I assumed, at the router would affect everyone, this is for punitive reasons.
-
@IRJ said in Unifi port blocking on specific networks:
Why not whitelist instead of blacklist?
Whitelist the internet except for a few services that I simply want to block as a means of punishment?
-
@DustinB3403 said in Unifi port blocking on specific networks:
at the router would affect everyone
Only if you programmed the router wrong.
-
@DustinB3403 said in Unifi port blocking on specific networks:
@IRJ said in Unifi port blocking on specific networks:
Why not whitelist instead of blacklist?
Whitelist the internet except for a few services that I simply want to block as a means of punishment?
I assumed you were talking about internal traffic. Are you trying block outbound?
-
@IRJ said in Unifi port blocking on specific networks:
@DustinB3403 said in Unifi port blocking on specific networks:
@IRJ said in Unifi port blocking on specific networks:
Why not whitelist instead of blacklist?
Whitelist the internet except for a few services that I simply want to block as a means of punishment?
I assumed you were talking about internal traffic. Are you trying block outbound?
He's being stupid.
This is a simple job for a dedicated Pi-Hole instance.
- Setup PiHole
- Add a Whitelist for things allowed
- Block everything else
- Update the user's system to use Pi-Hole
-
he's talking about ports - not URLS.. not sure that Pi-hole fixes this, unless he said the wrong word earlier.
-
@JaredBusch said in Unifi port blocking on specific networks:
@DustinB3403 said in Unifi port blocking on specific networks:
at the router would affect everyone
Only if you programmed the router wrong.
Exactly - you can definitely only affect that single network at the router, and not all the other networks. Otherwise, as stated, the config is wrong.
-
@Dashrender said in Unifi port blocking on specific networks:
he's talking about ports - not URLS.. not sure that Pi-hole fixes this, unless he said the wrong word earlier.
I specifically mean to block ports on a specified wireless network, had I meant URL's I'd be using my pihole.
-
@DustinB3403 said in Unifi port blocking on specific networks:
@Dashrender said in Unifi port blocking on specific networks:
he's talking about ports - not URLS.. not sure that Pi-hole fixes this, unless he said the wrong word earlier.
I specifically mean to block ports on a specified wireless network, had I meant URL's I'd be using my pihole.
Assuming
wifi - 192.168.1.x
LAN - 192.168.2.xYou configure the router to not allow said ports on network 192.168.1.x