Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. M

    [Solved] DNS failed for OpenVPN

    Excuse i made a typo, i mean "I configured VPN server to enable Web access" So it replies to your other point ("Make sure the VPN server is configured to allow client's access to the LAN & Internet."). In conf it's set with push "dhcp-option DNS 192.168.1.1" push "redirect-gateway def1" So i...
  2. M

    [Solved] DNS failed for OpenVPN

    Hi I'm using my AC68U ( 382.2 beta2) as OpenVPN server. My client (my Android phone) can connect to it, browsing by IP works, but DNS resolutions failed. If i override the DNS on client with public IPs it works but my DNS-traffic leak. I configured DNS server to enable Web access, and when i'm...
  3. M

    DNScrypt dnscrypt installer for asuswrt

    Thanks for the tip ! How can i miss that !? I don't know why before on 380.XX it works but now on 382.XX with the private ip i do not have any leak ;)
  4. M

    DNScrypt dnscrypt installer for asuswrt

    After updating my 68u to 382 beta 2, https://www.perfect-privacy.com finds dns servers from dnscrypt but also dns servers from wan settings. Before, on 380 branch, it can find only dnscrypt one's. Do you know if an update is already planned, or do you need some logs/dump ?
  5. M

    Skynet Skynet - Router Firewall & Security Enhancements

    I give up... I reinstall Skynet from scratch and reboot to have a clean session, but scan ports are still not banned... Thanks for your help anyway :(
  6. M

    Skynet Skynet - Router Firewall & Security Enhancements

    Ok so i do not understand the differences ... I will try to uninstall Skynet and delete all "boot" scripts to restart from scratch to see if i can get the same behavior, i love the idea of banning IPs if they try to reach a closed port.
  7. M

    Skynet Skynet - Router Firewall & Security Enhancements

    PS : i confirm the algo of IPSET_BLOCK that blocks IPs when they tried to use closed port : Does Skynet do the same ? or does it rely on list only ?
  8. M

    Skynet Skynet - Router Firewall & Security Enhancements

    Arg ! The only rule i added manually in firewall-start is a rule to block imcp type 13, nothing else... Do you have NAT rules for ports 443 and 80 ? These ports are opened and routed to my internal server, so thery are really opened, and they have NAT rules for them. But i think IPSET_Block.sh...
  9. M

    Skynet Skynet - Router Firewall & Security Enhancements

    For example, on http://www.inoculer.com/scannerdeports.php , with 80 and 443 opened : Before (with IPSET_Block.sh) i get all ports "filtered" After (with Skynet) i get all filtered except ports 80 and 443 "opened"
  10. M

    Skynet Skynet - Router Firewall & Security Enhancements

    I don't know why port scanning tool can scan and find my open ports without being blocked and banned :( With IPSET_Block.sh it was ok but now without this script (in conflict with yours so i removed it) it's not protected...
  11. M

    Skynet Skynet - Router Firewall & Security Enhancements

    By "SPI firewall", do you mean Trendnet DPI engine ? I have Firewall and DOS protection enabled and do not see any other options to enable. By expected results, do you mean "all filtered" ? (even port actually opened ?)
  12. M

    Skynet Skynet - Router Firewall & Security Enhancements

    Yes i use the same format. Your tool looks great, thanks for your big work ! :) Do you know why port scans are not blocked ?
  13. M

    Skynet Skynet - Router Firewall & Security Enhancements

    Thanks for the explanations ! Ok so it's not a problem. The other point of "concern" is the port scanning... I used IP_BLOCK.sh before and it efficiently blocks port scanning, but with Skynet, online tools and nmap are not blocked, is it normal ?
  14. M

    Skynet Skynet - Router Firewall & Security Enhancements

    Hello Maybe i use it the wrong way, but when i want to use a custom url to get lists (i selected some lists from Firehol), it parse it without errors, but i can find all urls from my list in /jffs/shared-Skynet-whitelist... Lists selected are to be banned, not whitelist :/ Thanks
  15. M

    How to Dynamically Ban Malicious IP's using IPSet (Martineau version)

    Hi Thanks for your scripts ! I can find IPSET_Block v3.05 with HackerPorts v2.03, but apparently they are not the latest versions, i can't find v4.X with V2.06 or more. Can you provide links or update first post ? Thanks
  16. M

    Protect OpenVPN server

    I use the default generated certificates (directly generated by router when server is activated) for server, and couple User/Password, with HMAC protection over tls-auth. I don't know if it's robust enough (with a strong password obviously), that's why i wanted to protect from bruteforce. But as...
  17. M

    Protect OpenVPN server

    Hi I've searched here but i can't find a way to do what i want to protect my openvpn server so ... I know fail2ban (use it on other computers), i know merlin do not want to use it because of python, and i've read posts about ipset scripts to protect from some IPs (by country or malicious lists)...
View older results
Top