A place users can post their projects. If you have a small project and would like your own dedicated place to post and have others chat about it then this is your spot.

User avatar
By alexcri77
#69798 Thank you for sharing you work! I have a problem.
It is possible to disable Firewall?
My webserver is 192.168.4.2, my sensor is 192.168.4.3 (esp and ds18b20), but I can not send the data to the webserver(directly to 192.168.4.2), i think because of it firewall.
If I set the sensor to send data over the internet to my server, everything is ok
When the server and sensor are in the main router, everything works ok.
Can you help me? Thank you
User avatar
By jcea
#70105 Still interested in this, specially the "do not expose admin interface in the WAN side". I use this project to isolate me from hostile open networks like hotel or starbucks :-).


martin_g wrote:Thank you for your feedback.

About your issues:
- You are right: the standalone branch misses some of the latestst changes. Think, I will merge them and make the master branch "standalone". Will do that next week, when I am back from summer vacation.

- Will think about the security model. Currently the assumption is, that the owner of the uplink WiFi is the good guy and that this WiFi has to be protected from the clients of the SoftAp side. Probably it is a good idea to be able to restrict admin access either to the uplink side or to the SoftAP side only.

- It would be easy to include "reset [factory]" in the list of "locked" commands, however then you have to reflash the config, once you have forgotten the lock pw. Perhaps it would be a compromise to allow it at the serial console even in locked state.

- If the uplink side has no password, you can still set one to use it as lock password. But optionally saparating these two passwords might still be a good idea. The ratio behind the current logic is a) the security model and b) that it is easier to remember one PW for WiFi.

- My experience is, that running the CPU at 160 MHz is a good idea. The additional power consumption is marginal (had about 5% less battery time), stability and heat are not an issue, and actual computations are about 50% faster. Think, this is the case as the router CPU idles most of the time anyway.