Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. Scheggiaimpazzita

    RT-AC88U USBs not working just after upgrade to 384.3

    Done the upgrade by HTTPS GUI, the wireless come back and it seemed to be normally working (I was able to browse on the internet). The I checked a 20cm noctua fan on which the router is standing and that is connected to the router by the rear usb port and it was not working. I observed also that...
  2. Scheggiaimpazzita

    Router overheating?

    Actually I cannot do any hw modification to my AC88 because its still under guarantee, so i don't want to loose it. I'm limited myself to seat it over a 20cm noctua with some spacers between noctua/router and noctua/shelf. But it already allow a 15/20 degree celsius drop with noctua running at...
  3. Scheggiaimpazzita

    Router overheating?

    The temperatures are normal but i think that's crazy to make box like those. I had a billion router that was almost cold even put on the rear of a sofa on vertical mount. When I took an ac88 I was forced to put it on a small shelf to put it horizontally and give it more air otherwise I would...
  4. Scheggiaimpazzita

    Merlin Firewall...???

    Its simple, I want that the cam is able to resolve only two FQDNs. Resolving other, could bring to use the fact that I set some "any destination" rules to send out data. For example, If I know that port TCP 587 is open, I can setup on internet a server that answers on TCP 587 and connect to it...
  5. Scheggiaimpazzita

    Merlin Firewall...???

    You were right, thats what I want to do, looking inside the dns packets and drop everything (from the cam) that is not requiring the resolution of time.nist.gov smtp.fastwebnet.it That are the ntp settings FQDN for time adjust and the SMTP for motion detection alarm relay. Powerful feature...
  6. Scheggiaimpazzita

    Merlin Firewall...???

    Wow! The lack of https access was already the reason for which I never exposed any of my cheap webcams. I already saw while I was using the billion router that the dbpower webcam was trying to reach some destinations in China and similar. And I blocked that behaviour with the billion's firewall...
  7. Scheggiaimpazzita

    Merlin Firewall...???

    Its another command I didn't know and its nice becaquse it shows a rule sequence that is more clearly understandable for who has GUI approach. Finally I set up these rules: iptables -I FORWARD 1 -p udp -s 192.168.2.97 --destination-port 123 -j ACCEPT iptables -I FORWARD 2 -p udp -s 192.168.2.97...
  8. Scheggiaimpazzita

    Merlin Firewall...???

    :D
  9. Scheggiaimpazzita

    Merlin Firewall...???

    I started some tests but I didn't good results. I run these two commands: iptables -A FORWARD -s 192.168.2.97 -j LOG --log-prefix "Ball_CAM_Drop" iptables -A FORWARD -s 192.168.2.97 -j DROP But I don't see any log in the /tmp/syslog.log and the host still communicate with internet. Where is...
  10. Scheggiaimpazzita

    Skynet Skynet - Router Firewall & Security Enhancements

    I tried to setup this rules to drop any packet from a Cinese webcam I own, except ntp, smtp and dns. I wrote those rules: iptables -A INPUT -p udp -s 192.168.2.97 --destination-port 123 -j LOG --log-prefix "Ball_CAM_NTP_Permit" iptables -A INPUT -p udp -s 192.168.2.97 --destination-port 123 -j...
  11. Scheggiaimpazzita

    RT-AC88U and PS4

    Nothing to say more... used as wan the fixed public ip address /32 with 10.x.x.x gateway, cloned the mac address and IT WORKS! :D:D:D:D:D:D:D:D:D It has only needed a reboot because after having configured by GUI the ifconfig was still showing the old private wan address, discovered by a ttl...
  12. Scheggiaimpazzita

    Skynet Skynet - Router Firewall & Security Enhancements

    Thanks Adamm, its another step to enhanche my knowledge. Now I understand that the output of the iptables in the last column (Destination) is very long and contains the "match" to the ipsets defined. @RT-AC88U-22F8:/tmp/home/root# iptables -t raw -vnL Chain PREROUTING (policy ACCEPT 181K...
  13. Scheggiaimpazzita

    Skynet Skynet - Router Firewall & Security Enhancements

    Help for a newbie, i'm trying to find by iptables -vvL the rules added from Skynet but in all 4 tables, I find only src and dst as 0.0.0.0/0.0.0.0 Where am I wrong? AC88U with Merlin 382.1_2 and latest Skynet with that output Skynet: [Complete] 128607 IPs / 1873 Ranges Banned. 0 New IPs / 0 New...
  14. Scheggiaimpazzita

    Merlin Firewall...???

    Very nice project (even if claiming to be same state of Check Point GUI seems to me a bit presumptuous) but I don't think it can run on Asus Merlin box. If I have to put another device in the chain I can freely use Fortinet or ChckPoint soho boxes we have for testing purposes, but I don't want...
  15. Scheggiaimpazzita

    Merlin Firewall...???

    I'm absolutely new to iptables and doing self study. I work on nterprise network firewalls so I am Quite Well Skilled on the basis but in linux i'm much more like a goat! :) also, i gave a read to the Skynet script and it is simply Incredible for complexity and as Well as functionality. It...
  16. Scheggiaimpazzita

    Merlin Firewall...???

    Thanks, its very similar to other tutorials that I read during these days. My problem is that even if I'm really familiar with network & security, there are a lot of aspects more related to the linux word that I don't know and I feel myself lost trying to give an explanation. For example, what...
  17. Scheggiaimpazzita

    RT-AC88U and PS4

    With Fastweb this is seemed to be not possible. I write using past because I remember that I tried, but with the pc and obviously windows refused to configure a /32 public ip address with a private ip address as default gateway. I read also on my provider's forum that the only solution for this...
  18. Scheggiaimpazzita

    RT-AC88U and PS4

    Fiber, but I already bought a fiber to copper adapter and tested it connecting to my PC to run some scans :) it works so if use that device I would be able to bypass the provider's router except for the nat with loopback behavior
  19. Scheggiaimpazzita

    Merlin Firewall...???

    Skynet is powerful but because of my near zero knowledge on iptables is very hard for me to understand how to set up new and specific rules like: - Allow one specific private IP of my lan to access some external IP or FQDN on specific ports - Block all other connection "to" and "from" the...
  20. Scheggiaimpazzita

    RT-AC88U and PS4

    I run a double router configuration too, and because of this I got from xbox the message that tells me about limited nat, even if I run UPNP that seems to work normally and even if I put the private Asus's WAN IP onto DMZ on the provider's router. Also, I'm not able to run DDNS with standard...
Top