Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. grogi

    RT-AX82U or RT-AX86S

    For me the AX86s is ~150€, AX86u is ~250€... A lot of money for almost identical hardware...
  2. grogi

    AdGuardHome Adguard setup

    There are simple steps to debug it out and figure out where the issue is. ipconfig /all on the client. Checks what are the settings distributed by DHCP server, which DNS server will be used. nslookup www.google.com 192.168.50.1 - checks if DNS server at 192.168.50.1 responds nslookup...
  3. grogi

    AdGuardHome Adguard setup

    He does. The entries put into the LAN / DHCP Server screen are values distributed to the clients through DHCP. Clients really should not query 127.0.1.1 - which is each client querying itself. It wouldn't. Internally, there are two resolver configurations inside these router. one in...
  4. grogi

    AdGuardHome Adguard setup

    Few tips, which should not affect effectiveness of blocking - but will imporove seciruty and performance. Remove the DNS server 2: 127.0.1.1. Any address that starts with 127 is local loopback - hosts will try to ask themselves for the addresses. Disable the AdGuard on the WAN interface as...
  5. grogi

    difference between WAN and LAN DNS settings options

    You don't need the complete [//100.168.192.in-addr.arpa/lan/local/]192.168.100.1:53 entry. [/lan/local/]192.168.100.1 will be enough - your private reverse DNS are specified below. If I understand it correctly, any address in 192.168.0.0/16, 172.16.0.0/12 and 10.0.0.0/8 will be reverse resolved...
  6. grogi

    Release [FORK][DSL] Asuswrt-Merlin 386.2_4 GNUton's build for DSL Routers released!

    I look, unfortunately I can see nothing... For instance GNUton build support Ax92u, while it is nowhere mentioned in any of the stickies. Could you point me to relevant post about GNUton builds?
  7. grogi

    difference between WAN and LAN DNS settings options

    I have zero experience in Adguard Home resolver. What will work reliably, without much configuration: WAN DNS - point to local adguard+unbound resolver LAN/DHCP DNS - router IP DNS Filter - router IP / no filter for some hosts Local name resolution will work, regular name resolution will...
  8. grogi

    Unable to get IPv6 of secondary link on Dual Lan Fail Over setup

    Do you get dynamic prefix allocation? If you have a static prefix allocation, you should be able to hard-code the IPv6 configuration in one of the custom scripts after WAN is up. But have in mind, it is a tricky business. With IPv6 there is no NAT - so each host going out to the Internet is...
  9. grogi

    AX6000/AX-88U Supported?

    GNUton's builds support AX92u (currently in beta). https://github.com/gnuton/asuswrt-merlin.ng If you get one for cheap, AX92u would make a decent AiMesh node. AX radio acts as backhaul band + 2.4/5Ghz as access bands for clients.
  10. grogi

    Looking for feedback from anyone that has gone from Merlin + Scripts to pfSense

    That's exactly what I was doing in our previous location: Merlin solely as wired router/firewall + HP ProCurve Switch to deal with PoE/Bonding/VLANs etc. + Unifi AP.
  11. grogi

    difference between WAN and LAN DNS settings options

    . Why? Be consistent - if you want all your DNS request from LAN to go to PiHole, make the DNSFilter point to it as well. Yep. This is expected. PiHole doesn't know anything about your local devices and cannot resolve their names. You need to enable Conditional Forwarding. It is not...
  12. grogi

    IPv6 DDNS Scripting Question

    Set a cron job that runs every minute. Script would: - check if ipv6 is enabled on the eth0 interface - read what address is assigned on the eth0 interface (or even better read the WLAN interface from nvram wan0_ifname variable) and if it is different from ipv6_rtr_addr - if they are...
  13. grogi

    Route Specific LAN IPs thru L2TP/PPTP VPN Client, How?

    If VPN Director doesn't support L2TP/PPTP, you would need to mimic it's behaviour and manually create routing table to push traffic through the tunnel interface (ip route xxxxxx) and create rules to assign given client to that table (ip rule xxxx). You would need to put those commands in a...
  14. grogi

    Route Specific LAN IPs thru L2TP/PPTP VPN Client, How?

    It is not unheard of for the legacy VPN infrastructure to support only those protocols.
  15. grogi

    difference between WAN and LAN DNS settings options

    There is an issue in the implementation in VPN director, which is loosing DNS intercept rules on certain scenarios. It will cause DNS queries leaking.
  16. grogi

    difference between WAN and LAN DNS settings options

    PiHole has two ways of solving this issue. It can replace router DHCP server - that way is fully aware of any host in the network and its IP address. I don't recommend this, you are starting to distribute the network management between multiple devices. You'd need to manually keep the...
  17. grogi

    Release [FORK][DSL] Asuswrt-Merlin 386.2_4 GNUton's build for DSL Routers released!

    Any plans to support recently releases TUF-AX3000 v2? It's paper specs look similar to the first TUF-AX3000, but it's cheap as peanuts (~€100 / $100)...
  18. grogi

    Options when behind cgnat

    https://www.snbforums.com/threads/how-to-use-ipv6-tunnel-6in4-on-asus-router.29074/ It really is not that difficult. Unfortunately, 6in4 use a non-common IP protocol number 0x29. Depending if and how well your ISP NAT tracks 6in4 packets, it might not work either. Consult RFC 7059, section 5...
  19. grogi

    Future predictions - which AX router will be supported longest?

    I have been very fortunate with my RT-AC68u purchase. It is more than 8 years at this stage, but it is still very well supported by Merlin firmware. Some models from same era - AC66, AC87 - are not. I know it is extremely speculative and depends on many external factors - but if you were to...
  20. grogi

    Options when behind cgnat

    CGNAT are typically deployed, when the ISP is short of IPv4 addresses. Those ISP who are short of IPv4 are really pressed to complete the IPv6 deployment. That's why it is very strange that you don't get native IPv6. IPv4 through CGNAT + IPv6 is not bad at all. Issues you're describing are not...
Top