Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. C

    Home network security with limited budget and using existing hardware only

    OP: If you really want to go deep, start working through this https://anonymousplanet.org/guide.html And I say that because you say that you're being targeted. If you're targeted, they know who you are. So, step one, understand how 'they' could track you :) Happy reading and exploration!
  2. C

    Home network security with limited budget and using existing hardware only

    I'd start with the following: 1. Identify your threat surface - meaning: What are you trying to prevent against / what is exposed that could be an attack surface. Examples: Wifi - someone could get on your network. Exposed ports inbound - how will the exposed services be protected. Online...
  3. C

    A victim of prolonged hacks, intimidation and disruption

    So, open ports on the router = hack? Is Upnp enabled?
  4. C

    Why bother with Pihole and other ad blocking hardware/apps?

    1. Mobile games - it's a matter of putting the phone down, not looking at the annoying add, then playing again sometime later. 2. Telemetry tracking - it's nice to be able to add that 3. Browsers managed by other parties (i.e. work) - sometimes it's nice to have a bit more control and...
  5. C

    Can all apps do fingerprinting or just browsers?

    You'd probably need to run Qubes to prevent it, which provides sandboxed environments. Maybe someone with more familiarity with Qubes can provide input.
  6. C

    PI- Hole disaster

    I run 1 pi (4b) and one VM (Ubuntu Server 20.04), that way I have fault tolerance if something goes doesn. That whole "primary / secondary" DNS server is a bit of a misnomer, the client decides how to select which DNS server it uses, so don't set one address to Pihole and one to some 'other'...
  7. C

    PI- Hole disaster

    First, setting up pihole should be hard it's a straight forward process. Second, to go after this (and by 'this' I mean that there could be multiple problems) I would recommend the following: 1. Get your router working properly using Merlin 2. Once that's done, ensure your Pihole is setup (ssh...
  8. C

    Trying to get around ASUS Router Limitations

    Just to add, it also runs well in a small Ubuntu VM (1GB RAM is plenty).
  9. C

    Prevent rfc1918 traffic to escape wan interface

    Some ISPs may NAT their internal networks. However, on the "internet" packets from the reserved networks isn't routeable. IMO this is a pretty edge case and fairly low risk compared to the application layer risks. But it should be easy enough to block the 10.x block not used by your ISP (be...
  10. C

    Firewall/Skynet Question

    First, skynet is really the thing that prevents _outbound_ traffic. Inbound traffic to non-forwarded ports doesn't need skynet. So if you're concerned with inbound scans, you can disable skynet to see if that makes a different to the router processing your packets Second, when you say port...
  11. C

    RT-AX88U - Web Access from WAN

    Not sure why this thread appeared in the "new posts" list, I never even noticed the date :)
  12. C

    RT-AX88U - Web Access from WAN

    That's the way to! :)
  13. C

    Merlin on ASUS ax86U Question

    Downside depends on what you want to do with your router. It exposes more options, therefor, it is possible that you'll find it more complex. Depending on your level of knowledge, that maybe a downside. I personally find a number of the extra settings and capabilities very useful and...
  14. C

    How to setup Pi-hole to work with Merlin?

    The LAN - DHCP screenshot is wrong. "Advertise the routers IP in addition ..." box needs to be set to "no". Otherwise some clients may use the router as the DNS server and bypass Pihole.
  15. C

    How to setup Pi-hole to work with Merlin?

    I use DDNS and have the Canadian Shield servers as me WAN DNS servers. My Pihole servers are in the LAN settings. No exclamation mark, everything works, time is accurate. Started this config with Merlin 384.x, then 386.x to now 368.2_6, never had any issues FWIW.
  16. C

    How to setup Pi-hole to work with Merlin?

    "The order you want" isn't up to you. It's up to the client, depending on how the client is implemented. :)
  17. C

    How to setup Pi-hole to work with Merlin?

    It's seamless. I have no issue rebooting either of the during the day, and both my wife and I work from home currently. With WFH I wouldn't have a single point of failure when it's so easy to have a 2nd (I run a 4B and also have pihole running in an Ubuntu VM)
  18. C

    How to setup Pi-hole to work with Merlin?

    Thanks for clarifying that :)
  19. C

    How to setup Pi-hole to work with Merlin?

    I don't get why people talk about throughput and DNS resolution / DNS ad-blocking together. :)
Top