Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. eibgrad

    Solved No ping on WG - BUG?

    You could very well have multiple problems, but at least now you've eliminated one of them, so we have something much more predictable and potentially explainable. "after a fresh reboot, devices connected over Ethernet are working fine when directed to any of the two WireGuard interfaces."...
  2. eibgrad

    Solved No ping on WG - BUG?

    I don't understand the distinction you're making wrt "over the Ethernet". All I see is a failure to access one of the WG connections when ping is told to use one specifically. That's all I can see. Once you mess up the routing system w/ multiple default gateway, ALL bets are off. I can't...
  3. eibgrad

    Solved No ping on WG - BUG?

    Just a guess (since I don't have access to WG on my RT-AC68U). What you've apparently done by having 0.0.0.0/0 for multiple WG connections is create *multiple* default gateways! And any WG connection that becomes the default gateway will eventually become unreachable as soon as the next WG...
  4. eibgrad

    Using VPN Director to route only torrent traffic through VPN

    As I said originally, I don't use WG, so I'm not 100% sure whether the router supports WG w/ the VPN Director. I suspect it does. And if it does, you should be able to specify the IP network of the OpenVPN server's tunnel as a *source* IP that should be directed over the WG connection. And...
  5. eibgrad

    Portforwarding issue

    What specifically are you trying to remotely access? If it's the router itself, you don't actually port forward in that case since the router is the target. You only port forward to reach some other device behind the router. If you're trying to reach the router itself, then typically you need...
  6. eibgrad

    Asus AX11000 VPN Fusion Notification

    I can't speak to the OEM firmware, but Merlin supports policy based routing w/ the VPN Director and the ability to enable a killswitch should the OpenVPN client fail, thus preventing access to the internet via the WAN. However, there are NO notifications about such failures. For that reason, I...
  7. eibgrad

    OpenVPN Server - route back to client

    I don't either. Then again, knowing how it works, and its purpose, I always keep it set to No anyway. As I said, it's only relevant when using Allow Client-to-Client. For all I know it's an undiscovered bug. It's NOT likely there are may users using the server for such purposes anyway, so it...
  8. eibgrad

    Using VPN Director to route only torrent traffic through VPN

    route 128.0.0.0 128.0.0.0 vpn_gateway Regarding the above… Using route directives (i.e., static routing) will work provided you KNOW all the destination IPs the torrent app will be using. In theory, you could ignore (filter out) the redirect-gateway directive and add route directives (w/ the...
  9. eibgrad

    OpenVPN Server - route back to client

    The Push option is not applicable in your case. That's intended for situations where you have *multiple* OpenVPN clients connect to the same server, and you wish to use the server as a gateway between the private IP networks behind each client. The OpenVPN server will only push that network to...
  10. eibgrad

    OpenVPN Server - route back to client

    You route from the OpenVPN server and back to the LAN behind the OpenVPN client by configuring the Manage Client-Specific Options section of the OpenVPN server. It's there you define the subnet(s) available behind the OpenVPN client based on the CN (Common Name) in the OpenVPN client's cert...
  11. eibgrad

    Using VPN Director to route only torrent traffic through VPN

    In principle, I agree. However, in this particular case, if the PC is the one managing the OpenVPN client and the torrent app, it's NOT the fact the guest VM has its own LAN ip that makes the difference (that's only incidental). I assume there is NO policy based routing on that PC in order for...
  12. eibgrad

    Using VPN Director to route only torrent traffic through VPN

    Oh, and something else as well. That OpenVPN client is a PC, right? I assume the torrent app is running on that PC. If it's your intent to limit what uses the tunnel to that of the torrent app, you're NOT going to be able to do it without PBR (policy based routing) on the client. As...
  13. eibgrad

    Using VPN Director to route only torrent traffic through VPN

    There are so many issues here, I'm not sure where to begin. I thought based on the other thread you had this working already w/ Merlin? https://www.snbforums.com/threads/redirecting-vpn-server-to-vpn-fusion-client.92688/post-931609 If that's the case, and what you've presented NOW is your...
  14. eibgrad

    How to switch secondary WAN to Hot-Standby?

    What constitutes too slow? At least for my ASUS RT-AC68U, the default is 6 secs (3 sec interval * 2 consecutive failures). If you change too quickly, you may end up w/ a lot of false negatives. https://www.asus.com/support/faq/1037368/
  15. eibgrad

    ASUS VPN Fusion Wireguard client not setting up route(s) on connection

    Just a guess (since I don't have access to WG on ASUS), it may be using a separate routing table for WG, then using the ip rules database to route traffic through that table. A dump of the ip rules would reveal that, plus the specific routing table, which you can dump as well. ip rule ip route...
  16. eibgrad

    Devices connecting to RT-AX82U, but not to the Internet ….

    After the upgrade, you simply do a factory reset (see the Restore/Save/Upload Settings tab). And yes, by definition, you are rebuilding from scratch. That's why it's best to take snapshots of important pages, save inputs to custom configuration fields or AddOns, perhaps save certs w/ the VPN...
  17. eibgrad

    RT-AX86U 3.0.0.4.388_24243 hacked

    Fair point. But I have to assume most users active on this platform (and particularly this Merlin forum) are NOT typical, so it behooves them to put more effort into finding an appropriate solution then simply assuming what ASUS makes available is safe.
  18. eibgrad

    Devices connecting to RT-AX82U, but not to the Internet ….

    Did you do a dirty upgrade? (i.e., NOT clear nvram and NOT start fresh)
  19. eibgrad

    RT-AX86U 3.0.0.4.388_24243 hacked

    The solution here is NOT continually waiting for fixes to these hacks. It's vowing NEVER EVER to allow direct access to services over the WAN except for OpenVPN server. And even then, you could redirect from the WAN to another internal device supporting OpenVPN server on a much more hardened...
  20. eibgrad

    Would an ASUS RT-AXE7800 be a good upgrade to from an ASUS RT-AC86U?

    Given the OP's needs, which really just amount to adding 6GHz support, why not just get an extender? It has to be significantly cheaper than replacing everything. This reminds me of the recent deal on Slickdeals...
Top