anyway, if you can get a shell to invoke iptables, here it is iptables -t nat -I POSTROUTING -s blocked_internal_ip -j DROP this will block all new connections from blocked_internal_ip to internet. the existing connections (such as opened telnet, ssh) are not affected. to restore, write iptables -t nat -D POSTROUTING -s blocked_internal_ip -j DROP depends on your router configuration, you could automate the process (each time you start the router? every sunday? etc) in various ways.
【在 t****t 的大作中提到】 : anyway, if you can get a shell to invoke iptables, here it is : iptables -t nat -I POSTROUTING -s blocked_internal_ip -j DROP : this will block all new connections from blocked_internal_ip to internet. : the existing connections (such as opened telnet, ssh) are not affected. to : restore, write : iptables -t nat -D POSTROUTING -s blocked_internal_ip -j DROP : depends on your router configuration, you could automate the process (each : time you start the router? every sunday? etc) in various ways.