What's new
By:

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

Recent content by Zarrow

  1. Z

    Dnsleaktest puzzle

    I received a response from Quad9. It just so happens that in my country of residence, they use a DNS server (not WoodyNet) that is owned by the same parent company that owns my ISP, so Dnsleaktest was correctly identifying the company, but it's not a leak.
  2. Z

    BE88U: Remove hidden wireless networks?

    AiMesh is off. Never used it, never enabled it. No printers or speakers on the network. I don't, unfortunately. So the message is, just ignore the phantom SSIDs. I can live with that.
  3. Z

    BE88U: Remove hidden wireless networks?

    I think something similar is happening with my RT-BE86U running the same FW. Using a WiFi detector app on my phone I see two hidden networks appear momentarily and disappear, overlapping the channels and signal strengths of the visible SSIDs I configured on 2.4 and 5GHz.
  4. Z

    Release Asuswrt-Merlin 3006.102.3 is now available for WIfi 7 devices

    Thanks to @dave14305 for diagnosing that DNS Director is not working on my RT-BE86U. The details can be seen here and in the following posts. A temporary fix can be seen in post #47 of that thread.
  5. Z

    Dnsleaktest puzzle

    Done. Iptables output: DNSFILTER - [0:0] [3:237] -A PREROUTING -i br+ -p udp -m udp --dport 53 -j DNSFILTER [0:0] -A PREROUTING -i br+ -p tcp -m tcp --dport 53 -j DNSFILTER [3:237] -A DNSFILTER -j DNAT --to-destination 192.168.50.1 DNSFILTER_DOT - [0:0] [0:0] -A FORWARD -i br+ -p tcp -m tcp...
  6. Z

    Dnsleaktest puzzle

    As you suggested, I did a full factory reset, enabled DNS Director only (no DoT) and ran those commands again. The output of iptables-save -c | grep DNSF: DNSFILTER - [0:0] [25:2013] -A PREROUTING -i br+ -p udp -m udp --dport 53 -j DNSFILTER [0:0] -A PREROUTING -i br+ -p tcp -m tcp --dport 53...
  7. Z

    Dnsleaktest puzzle

    AiMesh is definitely not enabled. You concluded in post #37 that DNS Director is not working on my RT-BE86U. Has what you wrote in the quoted post changed that conclusion? Any further tests needed? If It's truly not working, should I post something in the appropriate FW release thread?
  8. Z

    Dnsleaktest puzzle

    get_mtlan |-enable:[1] |-prio:[0] |-vid:[0] |-port_isolation:[0] |-name:[DEFAULT] |-createby:[WEB] |-*Network: |--IPv4: |-idx:[0] |-ifname:[br0] |-br_ifname:[br0] |-addr:[192.168.0.1] |-subnet:[192.168.0.0] |-netmask:[255.255.255.0]...
  9. Z

    Dnsleaktest puzzle

    It's a very simple single LAN, no VLANs, no switches, no Mesh, no Guest Network. My phones and PC connect by 5GHz or 2.4GHz WiFi, my TV and another box (powered off at the time of the test) on ethernet cables. IPs are assigned by DHCP, no static IPs used. Static routes are disabled. LAN Switch...
  10. Z

    Dnsleaktest puzzle

    One last thing: I decided to look for any activity on port 53. Here's what I saw when running a leak test with Quad9 DNS: tcpdump -i ppp0 -n -c 10 port 53 tcpdump: verbose output suppressed, use -v[v]... for full protocol decode listening on ppp0, link-type LINUX_SLL (Linux cooked v1), snapshot...
  11. Z

    Dnsleaktest puzzle

    Here's the output from the above command: DNSFILTER - [0:0] [956:72963] -A PREROUTING -i br+ -p udp -m udp --dport 53 -j DNSFILTER [0:0] -A PREROUTING -i br+ -p tcp -m tcp --dport 53 -j DNSFILTER [956:72963] -A DNSFILTER -i br0 -j RETURN [0:0] -A DNSFILTER -i br0 -j RETURN [0:0] -A DNSFILTER -i...
  12. Z

    Dnsleaktest puzzle

    I'll just use tcpdump from now on, thanks. No warning.
  13. Z

    Dnsleaktest puzzle

    That's pretty counter-intuitive. I thought the whole point of DNS Director is to force the clients to use the servers set in DNS-over-TLS (if Router is selected). Good call! The command tcpdump -i ppp0 -n -c 10 port 853 does output a load of queries to port 853. That's with Cleanbrowsing, and...
  14. Z

    Dnsleaktest puzzle

    I've now installed tcpdump. But when I issue either of those commands you listed above via SSH to the router and surf around a few websites I get: "tcpdump: listening on eth0, link-type EN10MB (Ethernet), snapshot length 262144 bytes ^C 0 packets captured 0 packets received by filter 0 packets...
  15. Z

    Dnsleaktest puzzle

    Sorry, but now I'm really confused by this Netstat-NAT output. If I try to put the WAN IP as source and router IP as destination and tick Show only NAT to router itself, I get nothing listed in the Diagnose output box. Same if I swap source and destination. If I set the source as my client...
See more
Back
Top