Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. eibgrad

    Solved Need Clarification

    It's NOT as if the router falls off a cliff come midnight on Dec 31. It will be just fine for quite a while (maybe even a year or two), unless a serious vulnerability is discovered (and for all we know ASUS might fix it for recent EOL products if it's that bad). It's NOT even clear if the router...
  2. eibgrad

    Printing from Guest Network (ASUSWRT-Merlin 3004.388.8_2)

    What you've tried so far won't work since the wl1.1 network interface is assigned to a bridge (br2). Also, it's probably not a good idea to enable ALL tcp traffic to the router (that would include the GUI, SSH, etc.). What you probably need is the BROUTING chain of the broute table...
  3. eibgrad

    WARNING - router is in manufacturing mode, and can behave unexpectedly (did you mess with your bootloader?)

    ^^^ In fact, try several, old and new, of the OEM firmware.
  4. eibgrad

    Evil Twin Attack Prevention?

    The "rogue" AP can NOT access the PSK (pre-shared key), if that's your concern. The PSK is *never* transmitted from the client to the AP during the WPA2/WPA3 4-way handshake. For all intents and purposes, the only real way you're going to fall victim to this kind of attack is when dealing w/...
  5. eibgrad

    Thoughts on RT-AX82?

    IMO, the best part of the AC1900P compared to the AX82 is the former is supported by FreshTomato and DD-WRT! That won't help w/ AiMesh, but just about everything else will improve in terms of capabilities.
  6. eibgrad

    ddns: vlan2 not find External WAN IP, go retry.(10)

    It's quite common for router firmware to NOT support all options for various commands in order to save space. Used to be a LOT worse years ago when storage was much more limited. But even now, you'll find missing options for unknown reasons. Frankly, the --line-buffered option isn't really...
  7. eibgrad

    Entware RT-AC68U (armv7l Kernel: 2.6.36.4) in need for a newer "ip-full" package

    https://www.linksysinfo.org/index.php?threads/entware-for-arm-updates.78507/ ??
  8. eibgrad

    RT-AX86U Pro LAN Port on Guest Network

    You can use the following sample script. https://pastebin.com/VWuQ7vLN
  9. eibgrad

    VPN director issue on RT-AC86U (386.14 Merlin FW)

    https://www.snbforums.com/threads/rt-ac-86u-help-with-no-free-space-left-for-gc-solved-for-now.56201/ ??
  10. eibgrad

    RT-AX86U Pro LAN Port on Guest Network

    I can't see the point of messing w/ a firmware that doesn't support VLANs natively. Esp. when you can just daisy-chain an old router (or pick one up off eBay or the local thrift store for cheap, $20-30) that supports FreshTomato or DD-WRT, add the appropriate firewall rules to prevent access to...
  11. eibgrad

    Asus RT-AX57 Go Kill switch

    If you're using third-party firmware (e.g., Merlin, FT, DD-WRT), they always provide a means to add your own firewall rules, and make them persistent. But when using OEM firmware, that's rarely the case. I know ASUS *used* to provide a simple mechanism for executing some user-defined code...
  12. eibgrad

    Support ending Dec 2024 for AC3100 - Need hardware buying advice?

    If you're otherwise satisfied w/ the RT-AC3100, you could try FT (FreshTomato) (my preference) or DD-WRT as an alternative, esp. if you're NOT married to the Merlin AddOns. You might even like it more, since these support VLANs natively, making support for guests and IOT w/ wired ports trivial...
  13. eibgrad

    How to create white list?

    By "how do I set the camera IP address to 192.168.101.168", I assume you have NOT reserved that IP address. That appears to be the IP network associated w/ Guest #1 on 2.4GHz (192.168.101.x). Normally you create a DHCP reservation using LAN->DHCP Server and binding the client's MAC address to...
  14. eibgrad

    How to create white list?

    This doesn't make sense. If the camera is allowed to connect to its server, then presumably this is the means it provides for access back into the network from which the connection was established. It's probably configuring a "tunnel", much like a VPN or SSH, to permit NAT traversal. At that...
  15. eibgrad

    Switch WAN type from SSH

    Given the number of wan variables available in nvram, I can't say I'm surprised. You're making assumptions that it's just a matter of nvram variables, when such changes might trigger other processes. It might even require a reboot. Regardless, in a case like this, I always dump nvram both...
  16. eibgrad

    How to create white list?

    I assume you're referring to *public* IPs on the internet. There's always the Network Services Filter.
  17. eibgrad

    Help with isolating camera and IoT networks

    P.S. Just to give you an idea of how long this AP mode solution has been around the FT forum, I wrote the following firewall script in support of it in 2015! And it has 3800+ downloads. https://pastebin.com/NxU0Q9iu https://www.linksysinfo.org/index.php?threads/virtual-wlan-with-adblock.78853/
  18. eibgrad

    Help with isolating camera and IoT networks

    As I initially described it, the AC68U has its WAN facing the private IP network of the AX82U (i.e., WAN to LAN, respectively), so NO, in that configuration, you would NOT be able to extended the wifi of the AX82U's IP network. But what you could do instead is configure the AC68U in AP mode...
  19. eibgrad

    Help with isolating camera and IoT networks

    If you still have the AC68U, install FT (FreshTomato) firmware and daisy-chain that router to the primary router to support your IOT/Camera networks. This effectively gives you VLAN support since you get the default VLAN (vlan1) of the secondary router, plus any additional VLANs you chose to...
  20. eibgrad

    VPN Director - 2 VPN Clients and Killswitch (3004.388.8_2)

    Yes, it will work. All he's suggesting is that you redefine the DHCP range so the NAS is assigned an IP *outside* that range. And now you can specify a minimal number of rules to route the DHCP range over OVPN2 w/o including the NAS. As I explained, you can continue using 192.168.10.2 through...
Top