Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. garycnew

    [SOLUTION] asus-wrapper-acme.sh Adds --dns Support for Let's Encrypt Wildcard SAN Certs to Integrated Asus acme.sh Implementation

    Good to know. I'll have to give it a try. I agree with your logic, but then why are ssh keys kept in nvram? Another product of agile development?
  2. garycnew

    [SOLUTION] asus-wrapper-acme.sh Adds --dns Support for Let's Encrypt Wildcard SAN Certs to Integrated Asus acme.sh Implementation

    @SomeWhereOverTheRainBow Why not just have SAN/Wildcard certs issued for SUBJECT: *.domain.tld SUBJECT ALTERNATIVE NAME: domain.tld and call it a day? It's my preferred cert management route of choice. Respectfully, Gary
  3. garycnew

    [SOLUTION] asus-wrapper-acme.sh Adds --dns Support for Let's Encrypt Wildcard SAN Certs to Integrated Asus acme.sh Implementation

    Most of the programmable variables are typically saved in nvram (including ssh keys). I'm surprised that the same isn't done with ssl certs. Excellent script! Setting of the nvram variables and restarting the httpd service is lacking in my script. I was more focused on having certs issues for...
  4. garycnew

    [SOLUTION] asus-wrapper-acme.sh Adds --dns Support for Let's Encrypt Wildcard SAN Certs to Integrated Asus acme.sh Implementation

    Sounds Great! I look forward to seeing your work. When you say, "the Router GUI SSL certs...need to be copied to two locations." I briefly reviewed the config-webgui.sh script and it looks like it's copying cert.pem and key.pem to /etc. Isn't /etc in memory and reset after each reboot? Are the...
  5. garycnew

    [SOLUTION] asus-wrapper-acme.sh Adds --dns Support for Let's Encrypt Wildcard SAN Certs to Integrated Asus acme.sh Implementation

    @Jeffrey Young Excellent to hear you've implemented a solution that meets your needs! Hopefully, @Dabombber, @SomeWhereOverTheRainBow, and my previous adventures down the Asuswrt-Merlin acme.sh rabbit-hole have assisted you on your subsequent adventure. I encourage you to contribute by...
  6. garycnew

    [SOLUTION] asus-wrapper-acme.sh Adds --dns Support for Let's Encrypt Wildcard SAN Certs to Integrated Asus acme.sh Implementation

    @Jeffrey Young I'm running the acme-3.0.1.sh script without any modifications. Gary
  7. garycnew

    [SOLUTION] asus-wrapper-acme.sh Adds --dns Support for Let's Encrypt Wildcard SAN Certs to Integrated Asus acme.sh Implementation

    @Jeffrey Young Full disclosure... @SomeWhereOverTheRainBow and I do quite a bit of knowledge sharing. It doesn't look like it's clear in the original post, but I've done the same as @SomeWhereOverTheRainBow by downloading the latest version of the acme.sh script and have mounted over the...
  8. garycnew

    [SOLUTION] asus-wrapper-acme.sh Adds --dns Support for Let's Encrypt Wildcard SAN Certs to Integrated Asus acme.sh Implementation

    @Jeffrey Young I agree. That's why I made my Asuswrt-Merlin router my certificate manager and why I ended up creating the asus-wrapper-acme.sh script. Do whatever method best works for you. Respectfully, Gary
  9. garycnew

    [SOLUTION] asus-wrapper-acme.sh Adds --dns Support for Let's Encrypt Wildcard SAN Certs to Integrated Asus acme.sh Implementation

    Yes... As I previously stated, zerossl's root CA covers more legacy devices/applications, so you avoid having to import certs. It's ultimately the reason I switched to zerossl. Enjoy!
  10. garycnew

    [SOLUTION] asus-wrapper-acme.sh Adds --dns Support for Let's Encrypt Wildcard SAN Certs to Integrated Asus acme.sh Implementation

    @Jeffrey Young Personally, I prefer for Asuswrt-Merlin to manage the cert process for me. I just wish Asuswrt provided a better interface for the acme.sh process. There's more than one way to skin an acme.sh script. Isn't it nice to have multiple options for a given task? I'm glad you're...
  11. garycnew

    [SOLUTION] asus-wrapper-acme.sh Adds --dns Support for Let's Encrypt Wildcard SAN Certs to Integrated Asus acme.sh Implementation

    My reason for switching to zerossl is purely pragmatic. If let's encrypt were to update their certificate authority with one that worked with legacy devices I'd switch back.
  12. garycnew

    [SOLUTION] asus-wrapper-acme.sh Adds --dns Support for Let's Encrypt Wildcard SAN Certs to Integrated Asus acme.sh Implementation

    Hi @Jeffrey Young I should let you know that the acme.sh script supports let's encrypt and zerossl certs, now. I have switched to using zerossl's free offering as their certificate authority covers more legacy devices than let's encrypt. I'm glad you like this post and I hope it assists you...
  13. garycnew

    Tutorial [SOLUTION] Asuswrt-Merlin Tor via Bridge, Device, Browser, Entry (Guard)/Middle (Non-Exit) Relay, and Device/Browser/Relay Hybrid Implementations

    Tor via Transparent Proxy - @SomeWhereOverTheRainBow brought to my attention an additional method for configuring Tor, which should be compatible within an Asuswrt-Merlin implementation. Thanks!
  14. garycnew

    Compatible USB 3.0 Hub for Asuswrt-Merlin 384.19 on Asus RT-AC66U_B1 (Linux 2.6 Kernel)

    @Apex4ever Thank you for adding your experience with the Orico 7 Port USB 3.0 HUB to this RT-AC66U_B1 compatability list. Much Appreciated! Respectfully, Gary
  15. garycnew

    Entware python2 entware

    @QMax With upgraded Entware and Transmission, there should be no need for python 2.7 installation. I went down the python 2.7 path and found it was better to upgrade Entware and related python3 dependent packages. Refer to my posts in this forum related to Debian Live DVD for compiling...
  16. garycnew

    Entware python2 entware

    @QMax Please elaborate. Gary
  17. garycnew

    Entware python2 entware

    @QMax Are you using an older Entware installation? The current arm7 Entware repository has Transmission compiled using python3. Regards, Gary
  18. garycnew

    No encrypt certificate not working with DDNS service

    @Dabombber, @JohnnyGuitar, et al: After successfully configuring Asuswrt-Merlin's Letsencrypt implementation (manually) with asus-wrapper-acme.sh and service restart_letsencrypt, I am running into to 2 final issues: 1. The Letsencrypt section of the Asuswrt-Merlin DDNS WebUI is still stuck at...
  19. garycnew

    Asuswrt-Merlin Port 80 DNAT's

    @ColinTaylor Wow... It's actually in the libletsencrypt.so. I hope you didn't spend too much time hunting down that strings output. I was thinking it would more likely be in the Asuswrt-Merlin kernel as that's how the related acme.sh output is referenced in the System Logs. Now, I can rest at...
  20. garycnew

    Asuswrt-Merlin Port 80 DNAT's

    @ColinTaylor The above response to @eibgrad was what I was referencing you to. Please see my other responses in this post, as well. I have to agree with your assessment. Respectfully, Gary
Top