I need the 2nd router esp a TP1link for blocking internet addiction site e.g. utube
openwrt’s firewall/block is really un-usable, compared to TP1ink, even the C2 ver1
is 5yr’s old and just USD 30. One can go TP1link s site and check out C2’s internet access control vs openwrt, it’s like MS word vs notepad.
I tried last time that when openwrt is the outer router,
if I disable NAT+DHCP in the inner TP1ink, the blocking by TP1ink is not working.
I am not sure is it I set it wrong, but currently if I enable the inner router (TP1ink)'s NAT,
the URL blocking is working.
So at the moment i will live with double NAT, until I have time to verify is it
I must have double NAT for the inner router (TP1ink) to function to block URLs.
If someone can introduce a function on openwrt to block URL, as good as TP1ink,
I will be much appreciated.
And as said in #1, that TP1ink got a code execution bug before and after wannacry,
so cant trust on security.
thx