this post was submitted on 09 Jul 2024
255 points (97.4% liked)
Asklemmy
44151 readers
1424 users here now
A loosely moderated place to ask open-ended questions
Search asklemmy ๐
If your post meets the following criteria, it's welcome here!
- Open-ended question
- Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
- Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
- Not ad nauseam inducing: please make sure it is a question that would be new to most members
- An actual topic of discussion
Looking for support?
Looking for a community?
- Lemmyverse: community search
- sub.rehab: maps old subreddits to fediverse options, marks official as such
- !lemmy411@lemmy.ca: a community for finding communities
~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~
founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
If your firewall can set outbound rules, and you can control DHCP on your network so that you can reliably know the TV's IPv4 address, you can block the TV from reaching beyond the local network there with a "deny all from source address of TV" type rule.
If your router/firewall is handling IPv6 though, it gets a lot more complicated, since the TV could have any number of addresses that change often.
Thanks. Will check out my router settings and respond back later tonight. :)
Okay, I checked, and as far as I can tell (which doesn't mean much as I don't know much about this stuff, mind you) it does seem like I can control outbound rules. However, I don't know how to find out the IP address of the TV. Additionally, I don't know if my router is IPv4 or IPv6 in this context, but according to the online spec sheet for my router model it supports both.
There should be a section in the configuration about dhcp, which is how ipv4 addresses are given out on your network. What happens is when a device first connects to the network, it sends out a broadcast with its mac address - the dhcp server (in this case, your router/firewall) hears this, and sends back a reply allocating an address. You should be able to see a list of currently allocated addresses, and hopefully configure reservations to make those allocations permanent. To reserve an ipv4 address for a specific device, you need that device's mac address.
Each item on that current allocations list should have a hostname, a mac address, and an ipv4 address. If it's not clear by the hostname which device is the tv, you can look up each mac address and deduce from there (the first part of each address is unique to a specific manufacturer).
Once you have an ipv4 address reserved for the tv, you can set your outbound firewall rule to block it.
Ipv6, as I mentioned, is much more complicated. It might be possible to disable it completely on your router, and that's likely the only way to block the tv from using it, but then your whole network will lose ipv6 capability across that boundary (probably not a lot of downside to that, though).
Good luck!