Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. M

    amtm amtm 4.9 - the Asuswrt-Merlin Terminal Menu, June 30, 2024 (locked thread)

    Yes, this is just a cosmetic issue, and it does not affect the functionality or usability of the s/w at all. So I understand when you said, "I am not sure it matters." Plus, you're not getting paid to do this work so it has low priority. In a commercial product where we have paying customers...
  2. M

    amtm amtm 4.9 - the Asuswrt-Merlin Terminal Menu, June 30, 2024 (locked thread)

    As in previous versions, when AMTM 4.2 CLI starts up, the currently installed F/W version on the router is displayed near the top of the header (after the router model & "machine hardware" type info). However, this F/W version is not the "complete" string that contains the revision/patch number...
  3. M

    Restart DHCP without reboot?

    There's a "Reboot router" menu selection in the scMerlin CLI that calls "service reboot" as well. Here's a screenshot showing this "Reboot router" option:
  4. M

    Asus RT-AC87U VPN cipher AES-256-GCM

    You can check that information by executing the following set of commands in an SSH terminal window: openvpn --show-ciphers | grep ".*-GCM" ; echo ; openvpn --show-tls | grep ".*-GCM" If you get no output at all, then the "AES-256-GCM" cipher is not available in the current version of OpenVPN...
  5. M

    Why do I need a Let's Encrypt certificate?

    Yes, on the router, the "Let's Encrypt" certificate is really intended only for accessing the router's webGUI using the HTTPS protocol via a regular web browser *without* getting the now all-too-common "Not Secure" warning messages (e.g. "Your connection is not private" or "Warning: Potential...
  6. M

    YazFi Allowing access to selected network devices

    FYI, I have submitted a GitHub PR for @Jack Yaz to merge all the recent code changes that address the problem you discovered into his official YazFi repository.
  7. M

    YazFi Allowing access to selected network devices

    Thank you again for taking the time to run the tests and provide the results. I've reviewed all the debug output files as well as the 2 system logs, and everything looks exactly as it should be. All the YazFi firewall rules handling client isolation, 2-way-to-guest comms & no internet access...
  8. M

    YazFi Allowing access to selected network devices

    Thank you for running the tests. And yes, something weird certainly happened during or after the router reboot. The 1st debug output file (YazFi_DEBUG_2024-01-02_06-20-09.txt) of the initial "base config" ("Allow Internet Access" YES, "Two Way to Guest" NO) after installing YazFi 4.4.5 version...
  9. M

    YazFi Allowing access to selected network devices

    Have you also tried testing with the latest YazFi develop "4.4.5" test version (dated "2023-Dec-29" as shown on the script file header)? If you have or plan to do so later on, do you mind sending me the debug output file created by executing the "GetYazFiDebugInfo2.sh" script after you have...
  10. M

    YazFi Allowing access to selected network devices

    No AiMesh nodes at all. Single router + one TP-Link WiFi Range Extender placed near the garage for the door opener & 2 surveillance cameras on the far end of the house. Only YazFi & YazDHCP for add-ons. One USB 3.0 drive with Entware but no services are running from it (it's used only to have...
  11. M

    YazFi Allowing access to selected network devices

    Thank you very much. I appreciate your taking the time to run all the tests & post the results. I reviewed the last 4 debug output files, and I continue to be puzzled as to why the YazFi 4.4.5 changes don't work in your specific routers. All the firewall rules and related NVRAM settings for...
  12. M

    Solved Exists an Option to disable VPN Access for "Admin" user ?

    Yes, that's technically correct. But based on the OP's results here: I thought: "Well, just make the success status explicit and see how the server reacts."
  13. M

    Solved Exists an Option to disable VPN Access for "Admin" user ?

    AFAIK, the specification for the "client-connect" option says that the cmd or script must return a success code for clients to connect, so something like this should work: [ $username = "admin" ] && exit 1 || exit 0 I don't know whether the current OpenVPN version in your router is enforcing...
  14. M

    YazFi Allowing access to selected network devices

    That's a very good, interesting observation because it seems to suggest that YazFi is doing "something" after installation & initial setup that interferes with the regular Guest Network "Intranet Access" even when that interface is not even enabled in the YazFi configuration file. In another...
  15. M

    YazFi Allowing access to selected network devices

    Yeah, I'm starting to suspect that something like that might be at play here. Although at this point we can't rule anything out completely, I highly doubt that Entware would be a factor in this situation, especially since I don't have any Entware-based add-ons installed, and the only Entware...
  16. M

    YazFi Allowing access to selected network devices

    I've looked through the iptables outputs you provided and ran them through diffs but did not catch anything that seemed "out of place" or any clues that would indicate a possible issue. Granted, I'm not a true expert in reviewing/analyzing firewall rules so it's possible that I may be missing...
  17. M

    YazFi Allowing access to selected network devices

    Well, currently I'm out of ideas as to what could possibly fix the problem you're seeing on your specific router + YazFi setup, especially since it's working on mine. For the record, the following test is what works for my particular case: RT-AC86U with AsusWRT-Merlin 386.12_4 YazFi 4.4.5...
  18. M

    YazFi YazFi - Combining guest networks/subnets

    That's correct for your router model. There should be no need to modify anything else unless you want to get much more specific with port numbers & protocols. Here's a table showing the current mappings of the virtual interface names to guest network numbers for dual-band routers (2.4GHz +...
  19. M

    YazFi Allowing access to selected network devices

    It looks like you forgot to run the "chmod 755 /jffs/scripts/YazFi.445.DEV.sh" command that I posted in my download instructions before overwriting the script (cp -fp /jffs/scripts/YazFi.445.DEV.sh /jffs/scripts/YazFi). Yes, that's expected because your original script was simply replaced with...
  20. M

    YazFi Allowing access to selected network devices

    Thank you for taking the time to run the tests and report the results. I took a look at the YazFi code that specifically deals with the firewall rules for the Guest Network virtual interfaces. Four Filter table FORWARD chain rules get created/deleted whenever the "Allow Internet Access" option...
Top