Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. Xentrk

    x3mRouting x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware (1-Nov-2020)

    I'll do some analysis on the site and report back what I find. Please post what you current have for the dnsmasq method.
  2. Xentrk

    x3mRouting x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware (1-Nov-2020)

    Your reply above confirms that you should have more than one entry in the ipset list. You can view using the command ipset -L ZEE5 Another thing is zee5.com is hosted on Amazon AWS server. There may be a conflict with the rule you have for Amazon as you are routing Amazon traffic to the...
  3. Xentrk

    x3mRouting x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware (1-Nov-2020)

    @Suresh Only seeing one IPv4 entry in the ZEE ipset list may be the problem. Check contents of dnsmasq.conf.add grep ZEE /jffs/configs/dnsmasq.conf.add What reply records are being added? grep -w "ipset add ZEE5" /opt/var/log/dnsmasq.log | sort -u
  4. Xentrk

    x3mRouting x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware (1-Nov-2020)

    What is the output of the following liststats ip rule iptables -nvL PREROUTING -t mangle --line grep -wc "ipset add ZEE5" /opt/var/log/dnsmasq.log
  5. Xentrk

    x3mRouting x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware (1-Nov-2020)

    With Asuswrt-Merlin, you can run from 1 to 5 VPN Clients at the same time. BBC blocks known VPN servers. As a result, I have a dedicated or private IP in UK that is not shared. I then route BBC traffic to the VPN Client to UK. For me, this is VPN client 3. I also have Netflix and other...
  6. Xentrk

    x3mRouting x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware (1-Nov-2020)

    Below is an example of view dnsmasq.log option 2 in Diversion. It is the query[A] records we want to specify in the dnsmasq method. The ipset feature of dnsmasq will then load the IPv4 addresses of the reply records.
  7. Xentrk

    x3mRouting x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware (1-Nov-2020)

    Is dnsmasq logging enabled? It is required for dnsmasq method. The other issue is the site may be referencing other domains. For example, for Netflix, you can't just specify dnsmasq=netflix.com. I wish it was that easy. As a result, you will have to do some analysis. For example, get our...
  8. Xentrk

    x3mRouting x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware (1-Nov-2020)

    The BBC rule will take priority over rules for LAN clients. For example, you can specify that the Apple TV get routed to VPN Client 1 or the WAN. However, BBC traffic will have a higher priority. We call this the Policy Routing Data Base or RMDB. You can use the "ip rule" command to display the...
  9. Xentrk

    x3mRouting x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware (1-Nov-2020)

    The first command is correct. It is saying direct ALL domains that end with zee5.com to VPN Client 5. The first parm after x3mRouting is the "source" of the traffic and the third parm the "destination".
  10. Xentrk

    x3mRouting x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware (1-Nov-2020)

    A recent update caused some changes to BBC which required some analysis. So far, I have it working with the method below. I am routing ALL BBC traffic to the "source destination" VPN Client 4. So adjust accordingly. The other item is the AWS method may not be required. I noticed many reply...
  11. Xentrk

    x3mRouting x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware (1-Nov-2020)

    You don't need x3mRouting for only one client bypass. Just as you have it above should work fine. It is suggested that you also route the router IP address to the WAN interface so services like ntp can still be accessed when the VPN is down.
  12. Xentrk

    x3mRouting x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware (1-Nov-2020)

    Let me know how it works out. With the dnsmasq method, only the hostname (e.g. videoplaza.tv) of the query records are required (e.g. host.com). Although I have included FQDN in prior use without issue. The ipset feature of dnsmasq will add the IPv4 addresses of the reply records. It is the...
  13. Xentrk

    Exclude website from being routed to VPN (policy based routing)

    x3mRouting has several ways to route traffic for a website. dnsmasq Method (bypass VPN for iplocation.net) x3mRouting 1 0 IPLOCACTION dnsmasq=iplocation.net Some sites are more complex as they may reference other domains. This requires a more detailed analysis of dnsmasq to see what domains...
  14. Xentrk

    Exclude website from being routed to VPN (policy based routing)

    If you have x3mRouting installed, you can use x3mRouting to create a VPN Bypass Rule for Amazon. Many streaming services use AWS servers and block known VPN servers. If you have an entry in the OpenVPN Client 1 Screen to route the entire LAN or a device to the VPN, the following command will...
  15. Xentrk

    Exclude website from being routed to VPN (policy based routing)

    If you have selective routing requirements, x3mRouting is your friend.
  16. Xentrk

    Why dnsmasq fails when internet is down?

    Thanks. Should be fixed now.
  17. Xentrk

    Why dnsmasq fails when internet is down?

    Please test this approach before I integrate with x3mRouting as an option to enable dnsmasq logging. It uses dnsmasq.postconf to add the required entries to /tmp/etc/dnsmasq.conf. copy/paste the following code snips on ssh session echo ". /jffs/addons/x3mRouting/dnsmasq_logging.sh $1 # Added by...
  18. Xentrk

    Why dnsmasq fails when internet is down?

    @dave14305 is right. The USB is probably not mounted yet so the log-facility fails. Another approach is needed similar to what Diversion handles dnsmasq logging configuration. It requires additional coding. For now, you can manually restart dnsmasq after USB mounts as a temporary workaround...
  19. Xentrk

    x3mRouting x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware (1-Nov-2020)

    BBC iPlayer Update Here are the latest routing rules I have set up to force BBC traffic to VPN client 4. sh /jffs/scripts/x3mRouting/x3mRouting.sh ALL 4 AWS-EU aws_region=EU sh /jffs/scripts/x3mRouting/x3mRouting.sh ALL 4 BBC_ASN asnum=AS2818,AS31459 sh /jffs/scripts/x3mRouting/x3mRouting.sh...
  20. Xentrk

    x3mRouting x3mRouting ~ Selective Routing for Asuswrt-Merlin Firmware (1-Nov-2020)

    Please post the syntax of the x3mRouting command. dnsmasq method is what I recommend for most people: Bypass VPN Client 1 x3mRouting 1 0 NETFLIX dnsmasq=netflix.com,netflix.net,nflxext.com,nflximg.com,nflxso.net,nflxvideo.net
Top