Allow ping on WAN interface

Macx · September 17, 2023, 8:03pm

Hi,

apparently I am the first to ask that question. Is it possible to allow ping on the wan interface?
The rational behind is that I need to ping my Brume device for availability monitoring. I use this router as a VPN server only and therefore it’s only connected to my network via its wan interface.

Best
macx

alzhao · September 18, 2023, 2:41am

You need to do this in luci.

Go to Luci->network->firewall and find wan. Set incoming to accept.

Macx · September 18, 2023, 11:41am

Thanks a lot for this hint.

But this looks to me like this allows any kind of traffic on the wan interface. Is it possible to only allow ICMP?

alzhao · September 18, 2023, 12:37pm

You are right.

Try add rule to allow ping. Someone like below. You can do in luci.

config rule
option name ‘Allow-Ping’
option src ‘wan’
option proto ‘icmp’
option icmp_type ‘echo-request’
option family ‘ipv4’
option target ‘ACCEPT’