[OpenWrt-Users] configuring firewall

[Daniel Dalton]

I want to configure my firewall on the openwrt router... (I have one of 
the asus models, but I don't think that is terribly important...)
Anyway I would prefer to just put together some iptables scripts, since 
I'm a bit familiar with that and can look up different rules.
The other reason is since I'm totally blind, using a braille display with 
brltty under linux using the lynx web browser and unfortunately I can't 
use the gui firewall that easily...

Anyway here is what I want to do.
Before I list what I want I have two questions:
1. What script should I place all my iptables calls in?
I want them to be restored if the router reboots or if there is a power 
dropp out...
2. How can I then test these rules all work?
Just with an nmap?

Ok so this is what I want:
- Only allow people from behind my network to send out packets and then 
recieve packets in a connection started by someone behind the router.
Do not allow anyone from the outside world just to send stuff straight 
in. They should be dropped...
Although its ok to recieve packets from the outside world if they are 
coming from a connection started by one  of my users...
- Block people from the outside world sshing into my router, only allow 
one local ip address to ssh in, how can I do this?
- Allow pings (I think I have code for that...)
- forward port 22 to a certain computer on my network (will I still be 
able to ssh into the router locally if I do this?)

I can probably look all these rules up, I have code that works on my linux 
box for pings and allowing ssh connections from certain ips, and the other 
one on forwarding I can probably find, but will forwarding port 22 stop 
ssh into the router?