Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. EmeraldDeer

    Time for a new router?

    My opinion is that no action is warranted yet ISP may provide 1000 Mbps service but cannot consistently deliver it One device is not likely capable of using 1000 Mbps because CPU constrained Most sites are not capable of delivering over 300-400 Mbps Do you ever have multiple devices downloading...
  2. EmeraldDeer

    Where to enable custom DNS?

    Use of DNS Director without exceptions Caching of lookups - all home devices share router dnsmasq cache, speeding up repetitive lookups. I also had a special case. Windows 10 would do a lot of lookups which do not have entries. The lack of entry results in looking up again. This pounded my...
  3. EmeraldDeer

    Where to enable custom DNS?

    WAN settings are which DNS servers the router will use. Required. I use Quad9 ECS. LAN settings are the DNS servers supplied to LAN clients by DHCP server. Optional. I do not use this. DNS Director will redirect DNS queries from LAN clients at the firewall level to the router...
  4. EmeraldDeer

    Possible DNS and/or Routing Issue Ping/Latency Slow

    This issue is why I use the ECS version of Quad9. https://support.quad9.net/hc/en-us/articles/360056850672-Secure-with-ECS-Support-Service
  5. EmeraldDeer

    Skynet Help me understand Skynet's outbound blocked connection

    I do not have a recent enough example of an outbound block to test in Skynet. I log the outbound blocks to syslog which is also forwarded to a PC. The PC syslogs go back to 2019. Those outbound entries are not truncated and include a destination port. Perhaps you can catch this happening...
  6. EmeraldDeer

    Skynet Help me understand Skynet's outbound blocked connection

    Hard to tell from internet search results for that IP address whether it is malware infection or simply torrents
  7. EmeraldDeer

    Skynet WAN ip outbound blocked

    I don't see Cloudflare DNS or NTP services using content distribution servers. DoH would not have a source address of the router. DoT would have a source address of the router but the destination port would be 853 rather than 443.
  8. EmeraldDeer

    Skynet WAN ip outbound blocked

    If the outbound connection is not malware, then I would follow up on proper whitelisting. If the outbound connection could be malware, then how does one prove it? Maybe tcpdump can capture it and WireShark on PC could analyze pcap. If you are lucky enough for socket to still be there, then...
  9. EmeraldDeer

    Skynet WAN ip outbound blocked

    On my router, Skynet shows that IP whitelisted as described earlier in thread # firewall stats search ip 188.114.96.0 ############################################################################################################# #...
  10. EmeraldDeer

    Skynet WAN ip outbound blocked

    What do you see if you search for the destination? There is a subnet at Cloudflare Brazil blacklisted. One of your devices (SRC) is trying to connect there. Does your device have malware or is it trying to connect to a legitimate site which happens to be on the same subnet? Hard to say.
  11. EmeraldDeer

    Guest wifi for smart devices

    Short answer is yes, for devices which need internet access but do not need LAN access, put them in an isolated guest WiFi. I do that with YazFi as above.
  12. EmeraldDeer

    Skynet SkyNet 7.4.0

    Installed and running for two days with no issues.
  13. EmeraldDeer

    How/when is ntp supposed to trigger/run (ntp_ready=1)

    I am using chrony but it appears the builtin NTP is used on boot. The settings are in nvram. # nvram getall | grep -E "ntp_|ntpd_" | sort size: 84845 bytes (46227 left) ntp_ready=1 ntp_server0=192.168.50.230 ntp_server1=time.apple.com ntp_server_tried=192.168.50.230 ntpd_enable=0...
  14. EmeraldDeer

    NTP “Alarm Clock” Error

    Chrony is a type of NTP server, so that would not be the problem. I use NTPMerlin chrony rather than NTP. I would be surprised if there was a bug in the Busybox NTP. Not sure many people run Merlin as an AP. I would be inclined towards using the Asus firmware for an AP.
  15. EmeraldDeer

    NTP “Alarm Clock” Error

    Make sure the GT ntpd is listening on the LAN interface. Below is an ntpd.conf assuming LAN interface is br0. # logfile /opt/var/spool/ntp/ntp.log driftfile /opt/var/spool/ntp/ntp.drift # restrict default limited kod nomodify notrap nopeer noquery # restrictive default IPv4 restrict -6...
  16. EmeraldDeer

    NTP “Alarm Clock” Error

    Just do the simplest query to see if time is being returned without trying to set the clock. # ntp -w -p time.apple.com ntp: reply from 17.253.20.125: offset:+0.004425 delay:0.023301 status:0x24 strat:1 refid:0x004d4853 rootdelay:0.000000 reach:0x01 ntp: reply from 17.253.20.125...
  17. EmeraldDeer

    Trying to use Quad9 with new ASUS RT-AX88U Pro

  18. EmeraldDeer

    Trying to use Quad9 with new ASUS RT-AX88U Pro

    Make sure clients are not using DNS over HTTPS. If Zen does not support DoH, then this is not the problem. Maybe Zen is redirecting DNS to itself. If true, then try DNS over TLS. I am OK with using the ISP DNS temporarily on boot.
  19. EmeraldDeer

    Skynet Latest update break dnsmasq

    I have not tried it yet, but it just looks like Country will show with name instead code. For example, Germany rather then DE. https://github.com/Adamm00/IPSet_ASUS/commit/70c58771d7dca7fe6e0842dc3aed22ddb0142c93
  20. EmeraldDeer

    Time to replace SB8200 - Comcast??

    I am also using an SB8200 on Comcast. There are two separate issues. Despite an Arris specification which is higher, Comcast's download speed rating for the SB8200 is 800. Recently Comcast increased the theoretical maximum download speed for my plan to 1000. I would need to replace the...
Top