Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. yk101

    Noob is this possible?

    @TIA, sorry I didn't understand your requirements completely, but I can answer your last question. You can open web interface to WAN either directly, or using ASUS DDNS. Just please limit the access only to your remote IP. This can be setup using GUI.
  2. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    Run the following: ./firewall debug enable ./firewall banmalware (if that wasn't done before)
  3. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    Actually, one more question - would the merge during banmalware/country updates delete entries that are no longer appear in the lists? I found that the lists I use are fairly dynamic. Not only they add things to ban, but also they remove certain entries....
  4. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    Yes, thank you. This would work for me.
  5. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    Sorry, it is my illiterate translation of the script then. In that case, how would one go about refreshing the country list without re-entering them one by one?
  6. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    @Adamm, you were looking for ideas earlier, so here are a few: 1. Export/import Whitelist entries to a separate file. This will allow running banmalware to download refreshed ban lists without blowing away manually added whitelist entries; 2. Ditto for Countries;
  7. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    Update: just pulled down 3.6.6 - everything works! Thanks a lot @Adamm! You are Z-man!
  8. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    Here it is: admin@RT-AC88U:/jffs/scripts# ipset -L Whitelist Name: Whitelist Type: hash:net Revision: 0 Header: family inet hashsize 1024 maxelem 65536 Size in memory: 8724 References: 1 Members: xxx.231.0.0/16 151.101.96.133 xxx.77.0.0/16 xxx.77.106.0/24 xxx.77.106.123 192.168.1.0/24...
  9. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    As per my previous port, IP is showing up in the ipset listing of Whitelist. It is there as /16, /24 and /32. debug info produces the following: Router Model: RT-AC88U Skynet Version: v3.6.4 (12/05/2017) iptables v1.4.14 ipset v6.29, protocol version: 6 FW Version: 380.66_beta5-gfccc157...
  10. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    Blacklist Doesn't show those IPs. No, connections to the router web interface and ssh don't work!
  11. yk101

    Upgrading my aging WR1043ND to an AC router. Recommendations?

    I keep my SSIDs separate. Had too many dropped connections when I named them the same. Another recommendation is to change ASUS stock firmware for Merlin's version. It rocks! It also allows you to thinker with things should you so desire.
  12. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    @Adamm, I did a bit of experimenting and see the following: admin@RT-AC88U:/jffs/scripts# grep -i 'xxx.xxx.' ipset.txt add Whitelist xxx.xxx.0.0/16 add Whitelist xxx.xxx.106.0/24 add Whitelist xxx.xxx.106.123 admin@RT-AC88U:/jffs/scripts# Obviously IP has been obfuscated. :-) Then, enabling...
  13. yk101

    Multiple CVE's for Asus routers.

    I'm sorry if this has been discussed already somewhere else, but I couldn't find such discussion. The issues identified herein sound scary enough to me: https://wwws.nightwatchcybersecurity.com/2017/05/09/multiple-vulnerabilities-in-asus-routers/
  14. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    @Adamm, I love your script, and hope you don't mind, if I make a few suggestions: 1. Please remove hardcoded whitelist /32 address - I'm sure it is important to you, but makes no sense for the rest of us to have it as an exception (call me paranoid?); 2. When checking for the update, instead...
  15. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    Ok, rebooted with the latest version (skynet is a nice touch!). Also whitelisted /16 for my work domain. Will see tomorrow if that part works.
  16. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    OK, attempted to use update: irewall: [New Version Detected - Updating]... ... ... Firewall: [Complete] 114104 IPs / 16927 Ranges banned. 1 New IPs / 0 New Ranges Banned. 111K IP / 1487 Range Connections Blocked! [2s] ./firewall: line 342: syntax error: unterminated quoted string...
  17. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    Hmm... I've done it this morning as I was leaving from work. Now I find that I can't access the router anymore from outside. Traffic seems to be passing through, and my VPN to/from other devices works properly, so I assume that my router just needs a reboot, but thought I'd bring it up just in...
  18. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    Ah, I think I see the problem: admin@RT-AC88U:/jffs/scripts# iptables --line -nvL FORWARD | grep -E "set.*Blacklist" | awk '{print $2}' 115K It seems that once you get above certain number, you get back an abbreviation that script chokes on while trying to add-up values in the 'HITS=' line...
  19. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    Great! Thanks Adamm! Now another small issue - after running for while, script stopped showing one of the counters (number of connections blocked): May 8 14:00:05 Firewall: [Complete] 112244 IPs / 16927 Ranges banned. 33 New IPs / 0 New Ranges Banned. 82003 Connections Blocked! [5s] May 8...
  20. yk101

    Skynet Skynet - Router Firewall & Security Enhancements

    Hey buddy, I think there is a typo in the script - check the spelling for "banmalware" case - you have "balmalware", otherwise great work! Thanks. admin@RT-AC88U:/jffs/scripts# sh -x ./firewall banmalware + date +%s + start_time=1494205019 + cat /jffs/scripts/firewall + head -29 #!/bin/sh...
View older results
Top