Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. C

    Router web accessibility from WAN/internet when an openvpn client is running

    I suspect that the VPN connection is timing out with no activity. I will write a script to modify the rules for you. But first I need a little information. Here is some code that I want you to place into a file call it /jffs/scripts/openvpn-event.sh. #!/bin/sh # set -v # set -x # # explore...
  2. C

    Router web accessibility from WAN/internet when an openvpn client is running

    The rules may be created by the configuration of the VPN on the router based on it's expected use. Lets just concentrate on getting a set of rules that works, and protects the router and network for the configuration you are using. To that end, manually delete the existing tap11 rule #1 in...
  3. C

    IPv6 breakage caused by ipv6_neighsol_drop

    Merlin/ John Would you consider moving this rule from mangle to the INPUT chain? I think that that mangle rules get processed for all packets, while the INPUT chain processes only a small subset of them.
  4. C

    Possible to Serve more than 254 Users on one router ?

    If you did not take Merlin's advice " ...You really should look into more business-minded products", the link to the thread below is the type of surprise you may get using a home router for that many users. http://www.snbforums.com/threads/nmp_client_list-eating-up-all-nvram-space.20491/
  5. C

    iptables rule not working

    Great, now that it's working, the next step is to make the insert location a variable so that if a configuration change causes some change in the rules, the script still puts the new rules in the correct place. The following code will find the location dynamically. # Locate both...
  6. C

    iptables rule not working

    Meaning of "kerneltz"? If it to select a timezone, the default is to use the current time on the router. Since you want to stop new connections, you would insert your rules just after the rule with "state RELATED,ESTABLISHED" (4) and "state INVALID" (6) which normally do not have a rule (5)...
  7. C

    iptables rule not working

    What does the option kerneltz do? I don't see it in the output you show. I don't use it on rules I have made that are time limited. Here is one post that I made with time limited rules. http://www.snbforums.com/threads/how-to-disconnect-local-pc-from-wifi.21342/#post-155325 Please run...
  8. C

    Router web accessibility from WAN/internet when an openvpn client is running

    A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or individual users with secure access to their organization's network. The key words are private and their organization. You are using it to...
  9. C

    Router web accessibility from WAN/internet when an openvpn client is running

    The bold/underlined rules are causing your problem. The rules are processed first to last, and first rule that has a jump to accept/drop and matches ends the processing. When a rule is used, it's packet count increases. On the INPUT chain for example, you have left a rule #1 which accepted 65...
  10. C

    Router web accessibility from WAN/internet when an openvpn client is running

    I was thinking the VPN server was on the Router. Now I understand you are connecting to a external VPN server with the router as the client. Normally that would be used to connect to another site owned by the same company, but in your case the VPN is to the Internet! You are correct that you...
  11. C

    Router web accessibility from WAN/internet when an openvpn client is running

    Maybe I was not clear. If you have the VPN client running on your phone, then it is logically inside your network via any thing that gives the phone Internet access. That could be a public WiFi or your phone's data plan. So what you observe is expected with the VPN running. If you turn off...
  12. C

    Upgrading Asus - can i keep static IP settings config?

    You could keep the N56U as your router and add a wired access point (or another router in AP mode). Run the cat6 cable as far as possible to get max separation of the two WiFi radios. The access point device does not need to be the same brand as the existing router.
  13. C

    Router web accessibility from WAN/internet when an openvpn client is running

    When on the inside network, you can connect to the router administrative page using either the it's inside or outside IP address. Since you are connected with the VPN, you are logically inside so can do anything you could from inside. Yes, would be possible only from the VPN connected device...
  14. C

    AC66U DLNA, FTP issue!

    And you kept all the security problems discovered since then!!! :eek: :rolleyes: If you want to stay with 3.0.0.4.374, please consider John's version which is based on Asus's 374_5656 but he has added all the security fixes since then. Download Link is on first post in this thread...
  15. C

    how to limit devices on lan/wan

    Are you sure you want the limit the phone? Data over the phone is a much higher cost per Gb than via ISP in my country. For the other two devices. Just limit the access to the device. They must trade the tablet with you for the laptop. At night, you get both devices.
  16. C

    RT-AC68U - newbie questions

    (1) Band refers to the number of radios, so Dual Band means you have 2 radios. The 3x3 refers to the "number of antenna" x "number of streams". You also need to be aware that the client (laptop, ipod, phone, etc) that you connect also controls the connection. For example a laptop with AC 1x1...
  17. C

    Reseting WAN port

    I suspect a timing problem between the router and the modem. The modem on power up may not be ready for the DHCP request from the router. Try doing a kill -SIGUSR1 xx where xx is the process id of udhcpc process. This signal causes udhcpc to renew the current lease or, if it does not have...
  18. C

    Abnormal login attempts

    Looking for other possible limits I found this: dns-forward-max=<queries> Set the maximum number of concurrent DNS queries. The default value is 150, which should be fine for most setups. The only known situation where this needs to be increased is when using web-server log file resolvers, which...
  19. C

    [Fork] Asuswrt-Merlin 374.43 LTS releases (Archive)

    I would notice a reboot because I run this command cat /tmp/syslog.log | grep -i -e "login" -e "password" -e "Exit" when I sign in via ssh. Also a reboot would have fixed the time change problem I had. I don't watch the up-time in the GUI.
  20. C

    [Fork] Asuswrt-Merlin 374.43 LTS releases (Archive)

    I am running Update 07 and get up times in weeks. Only when I manually reboot does it reboot. Last problem I had with this version was with the time change, but I ignored that for almost 2 weeks before rebooting. You said last several versions. I am a few versions back, what was the last...
Top