Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. G

    Suricata Suricata - IDS on AsusWRT Merlin

    default setup and Suricata - IDS/IPS on AsusWRT Merlin setup same log. 18/5/2020 -- 20:26:05 - <Notice> - This is Suricata version 4.1.7 RELEASE 18/5/2020 -- 20:26:05 - <Info> - CPUs/cores online: 2 18/5/2020 -- 20:26:05 - <Info> - Found an MTU of 1500 for 'eth0' 18/5/2020 -- 20:26:05 - <Info>...
  2. G

    Suricata Suricata - IDS on AsusWRT Merlin

    the af-packet creates a software bridge between 2 interfaces if you have it then the IPS works. This should be thought of as how to accomplish this in the Asus router. I wanted to try nfq mode but it is not enabled in suricata. It must enable the compiler will work well if we can build the IP table.
  3. G

    DNS filtering not working

    why don't you try the AiProtection parental control menu, it worked fine for me.
  4. G

    Suricata Suricata - IDS on AsusWRT Merlin

    the interface is modified to br0 so that requests from vpn clients can be seen. many people use IPS lan. i set the ip address and it was successfully logged by suricata. but google.com remained available. interesting and I haven't realized yet that you don't see wired computer traffic ...
  5. G

    Suricata Suricata - IDS on AsusWRT Merlin

    but the current setting is not set based on these, so I guess it doesn't work properly.
  6. G

    Suricata Suricata - IDS on AsusWRT Merlin

    I have a question: why is AF_PACKET IPS mode right for us? Why not the Iptables configuration? https://suricata.readthedocs.io/en/suricata-5.0.3/setting-up-ipsinline-for-linux.html#settings-up-ips-at-layer-2
  7. G

    Suricata Suricata - IDS on AsusWRT Merlin

    # Linux high speed capture support af-packet: - interface: eth0 - interface: tun11 defrag: yes use-mmap: yes netmap: - interface: br0 testing, working!
  8. G

    Unbound unbound_manager (Manager/Installer utility for unbound - Recursive DNS Server)

    Thank You! I try! maybe another example from your rpzhost file?
  9. G

    Unbound unbound_manager (Manager/Installer utility for unbound - Recursive DNS Server)

    https://gitlab.com/my-privacy-dns/rpz-dns-firewall-tools/unbound/-/tree/master/nxdomain/mypdns from here i tried the raw link. Downloading sets but there is an error in the end. The other thing is sometimes the script when I refresh the list doesn't download only the first line. If I add the...
  10. G

    Suricata Suricata - IDS on AsusWRT Merlin

    I would be interested in how to monitor the 2 interfaces? Maybe I should run 2 Suricata/ 2 interface at a time? What I set up works but uses a lot of CPU power, which slows down the net. The ids test works for both the vpn client and the wan client, the log is displayed. It works nicely, but...
  11. G

    Suricata Suricata - IDS on AsusWRT Merlin

    My af-packet config 1 WAN 1 TUN (vpn) interface (tun11=vpn1) all 2 interface working on suricata test who has a vpn connection and ask for feedback on how it works af-packet: - interface: eth0 threads: 1 defrag: no cluster-type: cluster_flow cluster-id: 98 copy-mode: ips...
  12. G

    Unbound unbound_manager (Manager/Installer utility for unbound - Recursive DNS Server)

    1589236320] unbound-checkconf[716:0] error: parse error /opt/var/lib/unbound/mobileadtrackers.zone 2:49: Syntax error, could not parse the RR's type [1589236320] unbound-checkconf[716:0] error: error parsing zonefile /opt/var/lib/unbound/mobileadtrackers.zone for mobileadtrackers. [1589236320]...
  13. G

    Unbound unbound_manager (Manager/Installer utility for unbound - Recursive DNS Server)

    how to add another rpz list? can I use multiple lists?
  14. G

    1 MAC address 2 client?

    There is a huawei P20-Pro phone with a static ip address assigned to 192.168.1.105. The client connects to the Internet through a VPN connection (like other devices). After a while, a number 2 appears in the upper corner of the client icon, the ip address changes to 10.228.79.169, or similar, it...
  15. G

    Unbound unbound_manager (Manager/Installer utility for unbound - Recursive DNS Server)

    100% working! No error! Thank You!
  16. G

    Unbound unbound_manager (Manager/Installer utility for unbound - Recursive DNS Server)

    AC86U merlin 384.17
  17. G

    Unbound unbound_manager (Manager/Installer utility for unbound - Recursive DNS Server)

    I haven't tested. the router etc/hosts.dnsmasq stores the hostname and ip address
  18. G

    Unbound unbound_manager (Manager/Installer utility for unbound - Recursive DNS Server)

    '/etc/dnsmasq.conf' does not contain a hostname
  19. G

    Unbound unbound_manager (Manager/Installer utility for unbound - Recursive DNS Server)

    manual edit unbound.conf.localhosts, the hostname is the same as the name in dnsmasq. local-data: "Zara-Moto-G.SAFENET-AC86U. IN A 192.168.1.112" local-data-ptr: "192.168.1.112 Zara-Moto-G"
  20. G

    Unbound unbound_manager (Manager/Installer utility for unbound - Recursive DNS Server)

    glehel@AC86U-VPN:/tmp/home/root# nslookup Zara-Moto-G.SAFENET-AC86U. Server: 127.0.0.1 Address 1: 127.0.0.1 localhost.localdomain Name: Zara-Moto-G.SAFENET-AC86U. Address 1: 192.168.1.112 Zara-Moto-G working! I added manual domain line in unbound.conf.localhosts all ip!
Top