Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    Ah, I see... The command returns both DNSIP's in "wan_dns" and "wan0_dns" from "nvram show". There are no other hits. This may be different in a dual wan environment.
  2. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    I do not get any output from that command... admin@RT-AC3100:/tmp/home/root# nvram show | grep DNSIP size: 64157 bytes (66915 left) admin@RT-AC3100:/tmp/home/root#
  3. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    @Adamm Just wondering if it would be possible to add to the "start" command another entry for DNS. Reason I ask is I have found myself having to add manually to the Whitelist the DNS servers returned by my ISP. I have "Advanced Settings/WAN/Connect to DNS server automatically" set to "Yes" and...
  4. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    Manually updated with ./firewall update and reran ./firewall debug info Router Model: RT-AC3100 Skynet Version: v4.9.9 (14/06/2017) iptables v1.4.14 - (eth0) ipset v6.29, protocol version: 6 FW Version: 380.66_4 (May 26 2017) Install Dir; /tmp/mnt/USB1/skynet (28.2G Space Available) Boot Args...
  5. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    0 21 * * * /jffs/scripts/ledsoff.sh #lightsoff# 0 17 * * * /jffs/scripts/ledson.sh #lightson# 00 2 * * Thu /tmp/mnt/USB1/adblocking/addon/update-hosts.add cronjob #UpdateHosts# 20 5 * * * /tmp/mnt/USB1/adblocking/addon/rotate-logs.add #RotateLogs# 25 1 * * 1 sh /jffs/scripts/firewall banmalware...
  6. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    Router Model: RT-AC3100 Skynet Version: v4.9.8 (14/06/2017) iptables v1.4.14 - (eth0) ipset v6.29, protocol version: 6 FW Version: 380.66_4 (May 26 2017) Install Dir; /tmp/mnt/USB1/skynet (28.2G Space Available) Boot Args; /jffs/scripts/firewall start debug banmalware autoupdate...
  7. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    @Adamm While Whitelisting DNS server IP's this morning I noticed an error is being reported. ./firewall: line 988: arithmetic syntax error The IP's did still get added to the Whitelist successfully.
  8. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    @Adamm it looks as though the latest commit for "Use aggregated country lists" was not picked up by last night's auto update. Suspect that is because the version number did not change. Or, am I getting ahead of myself here?
  9. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    The version my system is using is from entware, not busybox. Perhaps that is the issue. But I have not changed anything in months and was getting the Skynet updates daily including last night. Here is the output... admin@RT-AC3100:/jffs/scripts# wget -V GNU Wget 1.18 built on linux-gnu. -cares...
  10. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    The failed wget... admin@RT-AC3100:/jffs/scripts# wget -O /jffs/scripts/firewall https://raw.githubusercontent.com/Adamm00/IPSet_ASUS/master/firewall.sh Will not apply HSTS. The HSTS database must be a regular and non-world-writable file. ERROR: could not open HSTS store at '/root/.wget-hsts'...
  11. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    @Adamm a few minutes ago I initiated an update to v4.5.1 via ./firewall update The result was as expected, Skynet: [New Version Detected - Updating To ]... ... ... Done. However, when I checked /jffs/scripts/firewall the file was zero bytes. I then issued the wget command manually and it...
  12. HardCat

    How to Dynamically Ban Malicious IP's using IPSet (Martineau version)

    Did you ever find them? I cannot...
  13. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    @Adamm I know you are looking into perhaps why "firewall start" does not set up the iptables rules after a reboot and execution of /jffs/scripts/firewall-start. Router Model: RT-AC3100 Skynet Version: v3.9.4 (16/05/2017) iptables v1.4.14 ipset v6.29, protocol version: 6 FW Version: 380.66_0...
  14. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    @Adamm Would I be correct in saying that to ban a country now you must add them one at a time instead of from the static list you had before?
  15. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    In the file "README.md" I noticed unban is referenced where I think you meant to ban. Here Are Some Example Ban Commands; "./jffs/scripts/firewall ban" This Requires Manual Input (Only IPs accepted) "./jffs/scripts/firewall unban 8.8.8.8" This Bans The IP Specified "./jffs/scripts/firewall...
  16. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    Running the latest v3.5.2 here, looks to me like I am getting some hits.:) admin@RT-AC3100:/jffs/scripts# iptables -vL -nt raw Chain PREROUTING (policy ACCEPT 460K packets, 89M bytes) pkts bytes target prot opt in out source destination 126K 16M ACCEPT...
  17. HardCat

    Skynet Skynet - Router Firewall & Security Enhancements

    @Adamm, I ran /jffs/scripts/firewall update and recieved the following error: Firewall: [New Version Detected - Updating]... ... ... Firewall: [Complete] 111980 IPs / 30541 Ranges banned. 0 New IPs / 0 New Ranges Banned. IP / Range Connections Blocked! [2s] ./firewall: line 297: s: not found...
  18. HardCat

    How to Dynamically Ban Malicious IP's using IPSet (Martineau version)

    I see another difference, my N66 is running @RMerlin firmware and yours is running @john9527 firmware.
  19. HardCat

    How to Dynamically Ban Malicious IP's using IPSet (Martineau version)

    Interesting, when I run that command on my RT-N66U I do not get any "SET target options" listed. Hence my confusion... But, when run on either my RT-AC87R or RT-AC3100 I do... Must be the 2 different versions of iptables.
  20. HardCat

    How to Dynamically Ban Malicious IP's using IPSet (Martineau version)

    Not meaning to cause a ruckus here but did you mean -add-set as part of ipset not iptables? or am I confused? :confused:
Top