Search results
-
AX86U - port mirroring
It's probably complaining about the ROUTE jump target, which for third-party firmware is often NOT loaded by default, assuming it's in the firmware at all. For example, when using DD-WRT, I typically first need to issue the following command so the jump target is recognized by any subsequent...- eibgrad
- Post #3
- Forum: ASUS AX Routers & Adapters (Wi-Fi 6/6e)
-
Solved Guest network On VPN on 3004-388.8_2
I'm not sure this is the problem, but in general, it's best to avoid Guest #1. ASUS changed that guest network to use its own IP networks and bridges (br1 and br2, for the 2.4GHz and 5GHz freqs, respectively) for the benefit of AiMesh, and thus it might explain why they are NOT being routed...- eibgrad
- Post #2
- Forum: Asuswrt-Merlin
-
Solved 3004.388.8_* LAN clients connection problem
Seems to me you've answered your own question. You tried a dirty upgrade and it failed. As we all know, dirty upgrades are always a roll of the dice. And sometimes you're just going to come up snake eyes and be forced to do a clean upgrade. Doesn't mean the problem is guaranteed to go away...- eibgrad
- Post #2
- Forum: Asuswrt-Merlin
-
Should I replace my RT-AC68U?
FWIW, my own RT-AC68U running either FreshTomato or DD-WRT (just for comparison) gets at most 300Mbps over wireless, 640Mbps over wire w/ NAT acceleration enabled. I suppose it could be capable of more for either wireless or wired, but I lack the most modern wifi clients, and my ISP tops out at...- eibgrad
- Post #10
- Forum: ASUS Wi-Fi
-
Asus BQ16 - Firewall url filter not working?
As an alternative to the suggestion by @ColinTaylor, you could add the following to DNSMasq to deny name resolution to the device requesting update.xxx.com. address=/update.xxx.com/0.0.0.0 You need to add it using a dnsmasq.conf.add file, as described in the following link...- eibgrad
- Post #5
- Forum: ASUS BE Routers & Adapters (Wi-Fi 7)
-
Adguard Home and clients of subnet (wireguard tunnel)
Given the GL.iNet devices typically use third-party firmware (OpenWRT) and most make NAT'ing the tunnel on a VPN optional (if only to support site-to-site configurations), I'd be surprised if it wasn't there in the firmware. But I don't use OpenWRT, so I can't confirm one way or the other. If...- eibgrad
- Post #5
- Forum: Asuswrt-Merlin
-
VPN client
Good guess, but if that was the case, the OP would have likely received the following in the syslog. Aug 12 11:40:23 ovpn-client1[31254]: Options error: Unrecognized option or missing or extra parameter(s) in config.ovpn:27: block-outside-dns (2.6.10) But he didn't because of the following...- eibgrad
- Post #7
- Forum: Asuswrt-Merlin
-
Asus BQ16 - Firewall url filter not working?
The problem here is that URL filtering is antiquated and no longer very effective. When this feature was introduced many years ago, http (the insecure, UNencrypted version of the web protocol) was the one and only option. URL filtering would examine the URL in its entirety, both the domain...- eibgrad
- Post #2
- Forum: ASUS BE Routers & Adapters (Wi-Fi 7)
-
Wake On LAN not working on Asus Access Point
If the PC powers up but won't complete the bootup process for some reason (e.g., an essential but corrupted driver), it doesn't matter what you use to boot the PC, whether WOL or a wifi-enabled AC adapter, it ain't gonna boot. The only problem we're trying to solve is how to wake-up the PC in...- eibgrad
- Post #5
- Forum: ASUS AX Routers & Adapters (Wi-Fi 6/6e)
-
[RT-N66U] - Repeater Mode - LAN-Port: no Internet Access
Given just how lame OEM firmware can be, it wouldn't surprise me if the OEM didn't bother to bridge the LAN to the bridge created between the wireless client that connects to the remote AP and the local AP. Because that's what it takes to include the wired LAN ports. They have to be assigned...- eibgrad
- Post #4
- Forum: ASUSWRT - Official
-
Wake On LAN not working on Asus Access Point
I honestly don't know what the issue is wrt your WOL failure (although I have a suspicion), but let me make a suggestion. Several years ago I decided to get off this dependence on WOL and instead use wifi-enabled AC adapters. What I do in the case of a desktop PC is enable "Restore from AC...- eibgrad
- Post #2
- Forum: ASUS AX Routers & Adapters (Wi-Fi 6/6e)
-
OpenVPN Client: mishandled route directives
It wasn't my intention to suggest or even imply that the user (or YOU on behalf of the user) was expected to provide the network interface (if I did, then I misspoke). As I said, OpenVPN doesn't even require it whether via the route directives or the API for the reasons you suggest; it can't be...- eibgrad
- Post #8
- Forum: Asuswrt-Merlin
-
OpenVPN Client: mishandled route directives
Under normal circumstances, there isn't a need for including the network interface w/ the route command *assuming* you haven't created any routing ambiguities by having the same IP network available from more than one network interface. If that happens, it's typically considered a configuration...- eibgrad
- Post #5
- Forum: Asuswrt-Merlin
-
OpenVPN Client: mishandled route directives
Where is dev_env coming from? According to the docs, the network interface is not provided, which means the routing system will resolve it (presumably correctly). And that's the problem child here. dev_env is apparently always being set to tun1x, but I don't where that is being done. It's...- eibgrad
- Post #3
- Forum: Asuswrt-Merlin
-
VPN Director Assistance Request
I assume you turned to that third-party script because the VPN Director doesn't handle domain names. Ironically, if the route directives in custom config were handled correctly by the OpenVPN client's routing routines, you could probably avoid using a third-party script for those purposes...- eibgrad
- Post #16
- Forum: Asuswrt-Merlin AddOns
-
VPN Director Assistance Request
Well I don't know anything about that script, or how you configured it. But it's extremely likely it is the source of the problem. Because if you were to delete those specific entries, I bet it would work correctly. ip rule del fwmark 0x8000/0xf000 table main ip rule del fwmark 0x1000/0xf000...- eibgrad
- Post #13
- Forum: Asuswrt-Merlin AddOns
-
VPN Director Assistance Request
I did a search on "0x8000/0xf000" and got a hit on the following link. https://www.snbforums.com/threads/domain-based-vpn-routing-script.79264/ Any chance you're using the above script? Or just forgot you installed it?- eibgrad
- Post #10
- Forum: Asuswrt-Merlin AddOns
-
VPN Director Assistance Request
LOL. That's why I had you dump the internals. There's always a risk from a conflict. I have no clue about the source. If the problem persists after a reboot, perhaps a dump of the mangle table might prove useful as well. iptables -t mangle -vnL- eibgrad
- Post #9
- Forum: Asuswrt-Merlin AddOns
-
VPN Director Assistance Request
Well that didn't take long. Something else is marking packets and routing through the OpenVPN client(s) and main routing table, and it has higher priority than the VPN Director. admin@GT-AX11000-25C0:/tmp/home/root# ip rule 0: from all lookup local 150: from all fwmark 0x8000/0xf000...- eibgrad
- Post #6
- Forum: Asuswrt-Merlin AddOns
-
VPN Director Assistance Request
BTW, as an aside, with all the OpenVPN clients configured w/ a kill switch, and all of them routing the *same* local IP network, it makes no sense to have them all active at the same time. The only one that will be actively routed through is OpenVPN client #1. And should its tunnel fail, the...- eibgrad
- Post #4
- Forum: Asuswrt-Merlin AddOns