Under the wifi guest configuration I can enable/disable access to the intranet, this access goes both ways. Is there any way to configure the router such that one would be able to access the guest client from the intranet while still block the guest's access to the intranet? Thanks.
↧
One way access to guest
↧
SOLVED: cannot reset RT-N66U
I have a RT-N66U and wanted to upload a new firmware but I failed...
I uploaded it with the GUI and after the upload was successful (100%) I got the message to restart the router manually.
So I pushed the power button but the router got stuck....
Unfortunately I cannot even reset the router, what can I do now?
I tried to reset as follows:
1) RT powered on > press the reset button more than 10 sec, 20 sec, 30sec
2) RT powered off > press the reset button > RT powered on > waited 10...
SOLVED: cannot reset RT-N66U
I uploaded it with the GUI and after the upload was successful (100%) I got the message to restart the router manually.
So I pushed the power button but the router got stuck....
Unfortunately I cannot even reset the router, what can I do now?
I tried to reset as follows:
1) RT powered on > press the reset button more than 10 sec, 20 sec, 30sec
2) RT powered off > press the reset button > RT powered on > waited 10...
SOLVED: cannot reset RT-N66U
↧
↧
Asus RT-AC68U Traffic Blocking Question specific IP and VPN on top of that
Hi All,
I just loaded Asus Merlin fimrware and love it!
I wanted to set up a specific routing rule and am confused on how to do it on the UI.
I basically wanted to set a specific internal IP(item on my network) (static) 192.168.2.26 (for example) to block all traffic outgoing ingoing to it.
Then allow only certain websites to access (siteexample.com) that device and not allow other sites and route the traffic on top of that through a VPN Server(NordVPN) ( which i setup on the VPN setting...
Asus RT-AC68U Traffic Blocking Question specific IP and VPN on top of that
I just loaded Asus Merlin fimrware and love it!
I wanted to set up a specific routing rule and am confused on how to do it on the UI.
I basically wanted to set a specific internal IP(item on my network) (static) 192.168.2.26 (for example) to block all traffic outgoing ingoing to it.
Then allow only certain websites to access (siteexample.com) that device and not allow other sites and route the traffic on top of that through a VPN Server(NordVPN) ( which i setup on the VPN setting...
Asus RT-AC68U Traffic Blocking Question specific IP and VPN on top of that
↧
x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware
Selectively route LAN clients, website or streaming media traffic over the WAN or OpenVPN client interfaces on Asuswrt-Merlin firmware using IPSET lists.
Project Development
I used Amazon Prime, BBC, CBS All Access, Hulu, Netflix and Sling streaming media services in developing the project and include them in the usage examples on the x3mRouting GitHub repository.
Introduction
The features of x3mRouting include three...
x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware
Project Development
I used Amazon Prime, BBC, CBS All Access, Hulu, Netflix and Sling streaming media services in developing the project and include them in the usage examples on the x3mRouting GitHub repository.
Introduction
The features of x3mRouting include three...
x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware
↧
scribe - syslog-ng and logrotate installer
scribe v2.3_1
2019-12-01
scribe is a script that installs syslog-ng and logrotate from Entware. Filters for various common logs are included, and logrotate files to manage those logs.
NOTE WELL:
Looking at log files to "see if anything is wrong" is counter-productive. Log files are best used to find the cause of a problem, or gain knowledge of how the system works. Just because a log entry "looks strange" or...
scribe - syslog-ng and logrotate installer
2019-12-01
scribe is a script that installs syslog-ng and logrotate from Entware. Filters for various common logs are included, and logrotate files to manage those logs.
NOTE WELL:
Looking at log files to "see if anything is wrong" is counter-productive. Log files are best used to find the cause of a problem, or gain knowledge of how the system works. Just because a log entry "looks strange" or...
scribe - syslog-ng and logrotate installer
↧
↧
[RT-AC86U] I built cake!!!
It's been a long week, but I finally got it working!
...Okay I haven't hit "apply" yet for fear of a nuclear explosion (and next to 100% asp illiteracy), but the queuing discipline itself works when manually applied. I poured over Eric's history to ensure that it has hooks in all the right places to act as a legit option alongside sfq and the codels.
Anyone want to work on this with me? Downsides: I'm a kernel/project hacker at best, am super messy, and suck at git. Upsides: I am...
[RT-AC86U] I built cake!!!
...Okay I haven't hit "apply" yet for fear of a nuclear explosion (and next to 100% asp illiteracy), but the queuing discipline itself works when manually applied. I poured over Eric's history to ensure that it has hooks in all the right places to act as a legit option alongside sfq and the codels.
Anyone want to work on this with me? Downsides: I'm a kernel/project hacker at best, am super messy, and suck at git. Upsides: I am...
[RT-AC86U] I built cake!!!
↧
Unbound - Authoritative Recursive Caching DNS Server
At another time, with the help of forum members, I wrote a post about installing the Unbound recursive DNS server on Merlin firmware. In all tests, this was the best way to incorporate unbound into Merlin firmware. It is compatible with adblock Diversion and Skynet. Thanks @SomeWhereOverTheRainBow @dave14305
Make sure these options are set in the firmware.
DNSFilter: OFF
Tools/Other WAN DNS local cache:...
Unbound - Authoritative Recursive Caching DNS Server
Make sure these options are set in the firmware.
DNSFilter: OFF
Tools/Other WAN DNS local cache:...
Unbound - Authoritative Recursive Caching DNS Server
↧
Proper/best way to block traffic from external range, including port forwards
So I have several port forwards setup on my device (using the GUI).
I know the default firewall blocks all incoming traffic, but obviously port forwards are still acessible.
I want to be able to block all traffic from a particular IP or range of IPs. Preferably block just to a particular forwarded port, but if required all ports will work.
I assume I will want to use some type of iptables drop rule?
Can someone help me with the proper way to add this, and the best place/script to put it?...
Proper/best way to block traffic from external range, including port forwards
I know the default firewall blocks all incoming traffic, but obviously port forwards are still acessible.
I want to be able to block all traffic from a particular IP or range of IPs. Preferably block just to a particular forwarded port, but if required all ports will work.
I assume I will want to use some type of iptables drop rule?
Can someone help me with the proper way to add this, and the best place/script to put it?...
Proper/best way to block traffic from external range, including port forwards
↧
Need help to restrict LAN4 to acccess MiniDLNA
Hi,
I have Asus AC68U with Merlin v384.13. I want to restrict the devices, which are connected to LAN4 to access the MiniDLNA server on the router (192.168.10.1) It will be good if the SAMBA server is restricted as well, but it is not crucial as it is password protected.
I found the following code in the forum
Need help to restrict LAN4 to acccess MiniDLNA
I have Asus AC68U with Merlin v384.13. I want to restrict the devices, which are connected to LAN4 to access the MiniDLNA server on the router (192.168.10.1) It will be good if the SAMBA server is restricted as well, but it is not crucial as it is password protected.
I found the following code in the forum
Code:
# force LAN port 4 to use the Guest Network for RT-AC68U robocfg vlan 1 ports "1 2 3 5t" robocfg vlan 10 ports "4 5t" vconfig add eth0 10 ifconfig vlan10 up brctl addif...
↧
↧
[Release] FreshJR Adaptive QOS (Improvements / Custom Rules / and Inner workings)
Welcome to FreshJR's Adaptive QOS modification script!
Issues with Adaptive QoS:
Adaptive QOS works amazing, but I have decided to tweak it as I have a few issues with its performance out of the box.
Some of the issues are as follows:
Issue 1:
[Release] FreshJR Adaptive QOS (Improvements / Custom Rules / and Inner workings)
Issues with Adaptive QoS:
Adaptive QOS works amazing, but I have decided to tweak it as I have a few issues with its performance out of the box.
Some of the issues are as follows:
Issue 1:
The first issue is caused by the traffic groups. More specifically, the issue is caused by the existence of the default category. Unidentified traffic goes to the Default category. I would like...
[Release] FreshJR Adaptive QOS (Improvements / Custom Rules / and Inner workings)
↧
DDNS problem suddenly
This morning I changed the 86U name from RT-AC86U-7790 to ROUTER and now I see lots of errors in the logs
Jun 27 12:12:30 watchdog: start ddns.
Jun 27 12:12:30 rc_service: watchdog 816:notify_rc start_ddns
Jun 27 12:12:30 custom_script: Running /jffs/scripts/service-event (args: start ddns)
Jun 27 12:12:30 start_ddns: update DOMAINS.GOOGLE.COM default@domains.google.com, wan_unit 0
Jun 27 12:12:30 inadyn[21310]: In-a-dyn version 2.5 -- Dynamic DNS update client.
Jun 27...
DDNS problem suddenly
Jun 27 12:12:30 watchdog: start ddns.
Jun 27 12:12:30 rc_service: watchdog 816:notify_rc start_ddns
Jun 27 12:12:30 custom_script: Running /jffs/scripts/service-event (args: start ddns)
Jun 27 12:12:30 start_ddns: update DOMAINS.GOOGLE.COM default@domains.google.com, wan_unit 0
Jun 27 12:12:30 inadyn[21310]: In-a-dyn version 2.5 -- Dynamic DNS update client.
Jun 27...
DDNS problem suddenly
↧
How does 'smart connect' work?
Hi,
I have an RT-AC88U with currently Asuswrt-Merlin 384.13 (by writing this).
On wifi I have smart connect activated as I thought this sounds good when he router helps the clients to use the correct wifi.
But it seems - but this is only an assumption, that my "smart home" devices aka devices that only have 2.4ghz wifi have problems with this. Or - I have no other explanation currently - how to explain that only my 2.4 ghz devices have strange problems that they report connection problems...
How does 'smart connect' work?
I have an RT-AC88U with currently Asuswrt-Merlin 384.13 (by writing this).
On wifi I have smart connect activated as I thought this sounds good when he router helps the clients to use the correct wifi.
But it seems - but this is only an assumption, that my "smart home" devices aka devices that only have 2.4ghz wifi have problems with this. Or - I have no other explanation currently - how to explain that only my 2.4 ghz devices have strange problems that they report connection problems...
How does 'smart connect' work?
↧
Stubby-Installer-Asuswrt-Merlin
Stubby is an application that acts as a local DNS Privacy stub resolver using DNS-over-TLS. Stubby encrypts DNS queries sent from a client machine to a DNS Privacy resolver increasing end user privacy.
Since Stubby is in the early stages of development, it may not be suitable for non-technical users. To assist users to implement Stubby, I wrote a Stubby installer script to make the process easier.
The...
Stubby-Installer-Asuswrt-Merlin
Since Stubby is in the early stages of development, it may not be suitable for non-technical users. To assist users to implement Stubby, I wrote a Stubby installer script to make the process easier.
The...
Stubby-Installer-Asuswrt-Merlin
↧
↧
Let's Encrypt Questions
Do we have to have Router Open to WAN for this to work now?
Just spent a few hours trying to figure out my problem to get it working, and just wanted to verify that we now have to leave the router open to WAN.
If so how do we lock it down from bruteforce attacks and what not?
Just spent a few hours trying to figure out my problem to get it working, and just wanted to verify that we now have to leave the router open to WAN.
If so how do we lock it down from bruteforce attacks and what not?
↧
Need help with cert and DDNS...
I originally setup 384.14 beta 2 on my RT-AC86U with a local self-signed certificate for managing from the LAN side via HTTPS. No issues there.
However, now I want to enable DDNS and I'm having issues. Here's the log output:
Need help with cert and DDNS...
However, now I want to enable DDNS and I'm having issues. Here's the log output:
Dec 4 15:38:42 inadyn[485]: In-a-dyn version 2.5 -- Dynamic DNS update client.
Dec 4 15:38:42 inadyn[485]: Failed resolving hostname htismaqe.asuscomm.com: Name or service not known
Dec 4 15:38:42...
Dec 4 15:38:42 inadyn[485]: Failed resolving hostname htismaqe.asuscomm.com: Name or service not known
Dec 4 15:38:42...
Need help with cert and DDNS...
↧
acsd log message priority
Running 384.13 on an RT-AC3200.
The acsd log messages appear to have been assigned a priority of Critical (or Alert?). Seems like Info or Notice would be more appropriate.
I know that I can stop seeing these messages by not using auto channel settings.
I'm sending the syslog to a remote server, which happens to be an AlienVault OSSIM server. In addition to collecting the received log messages, if a message has a priority of Critical (or higher), it also automatically gets written to...
acsd log message priority
The acsd log messages appear to have been assigned a priority of Critical (or Alert?). Seems like Info or Notice would be more appropriate.
I know that I can stop seeing these messages by not using auto channel settings.
I'm sending the syslog to a remote server, which happens to be an AlienVault OSSIM server. In addition to collecting the received log messages, if a message has a priority of Critical (or higher), it also automatically gets written to...
acsd log message priority
↧
SOLVED: cannot reset RT-N66U
I have a RT-N66U and wanted to upload a new firmware but I failed...
I uploaded it with the GUI and after the upload was successful (100%) I got the message to restart the router manually.
So I pushed the power button but the router got stuck....
Unfortunately I cannot even reset the router, what can I do now?
I tried to reset as follows:
1) RT powered on > press the reset button more than 10 sec, 20 sec, 30sec
2) RT powered off > press the reset button > RT powered on > waited 10...
SOLVED: cannot reset RT-N66U
I uploaded it with the GUI and after the upload was successful (100%) I got the message to restart the router manually.
So I pushed the power button but the router got stuck....
Unfortunately I cannot even reset the router, what can I do now?
I tried to reset as follows:
1) RT powered on > press the reset button more than 10 sec, 20 sec, 30sec
2) RT powered off > press the reset button > RT powered on > waited 10...
SOLVED: cannot reset RT-N66U
↧
↧
[Release] Skynet - Router Firewall & Security Enhancements
UPDATED 04/12/2019
![[IMG]]()
![[IMG]]()
Skynet - Router Firewall & Security Enhancements
Skynet is the first comprehensive IP banning and security tool exclusively for Asus Devices.
The goal...
[Release] Skynet - Router Firewall & Security Enhancements
![[IMG]](http://travis-ci.com/Adamm00/IPSet_ASUS.svg?branch=master)
Skynet - Router Firewall & Security Enhancements
Skynet is the first comprehensive IP banning and security tool exclusively for Asus Devices.
The goal...
[Release] Skynet - Router Firewall & Security Enhancements
↧
ADblocker question
Right now I use PI-hole on a Rpi2 as a whole home adblocker... I am confused by all the other adblockers that run on the router itself. Is there any advantage to any of them vs PiHole?
↧
One way access to guest
Under the wifi guest configuration I can enable/disable access to the intranet, this access goes both ways. Is there any way to configure the router such that one would be able to access the guest client from the intranet while still block the guest's access to the intranet? Thanks.
↧
