Menu
What's new
By:
Filters Better Search

Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. M

    Connect router to wifi hotspot

    Thanks!! I hadn't considered that. I'm situated in an AT&T 5G area and presumed I'd be good for 5G or LTE. I get HDTV off the air - but do stream Netflix. Think I'll test it as a "hotspot" for a while before investing in a cellular modem! Mildly degraded streaming will be acceptable - REALLY...
  2. M

    Connect router to wifi hotspot

    YEP......I have concerns too; biggest one is that, though the connection is encrypted, can it be hacked and either the adapter or my iphone compromised? Little iphone and/or adapter might be easy to overwhelm. I like snort - used it years back in the windows day. I plan on looking into some...
  3. M

    Connect router to wifi hotspot

    Thanks, Tech9! I was hoping someone would ask that, as it seems easy to get the wrong device and there are likely better devices hidden out there. Current candidates: <https://www.amazon.com/dp/B075KR7Y4D/?tag=snbforums-20> <https://www.amazon.com/dp/B0118SPFCK/?tag=snbforums-20>
  4. M

    Connect router to wifi hotspot

    Thanks Tech9! Wifi adapters/connectors seem cheap enough - I just didn't want to buy one if I had "wisp" mode.
  5. M

    Connect router to wifi hotspot

    Thanks, bluzfannmr1! If I stay with or return to Comcast for some reason that'd be the first thing I'd do.
  6. M

    Connect router to wifi hotspot

    Thanks eibgrad! I'll go ahead and try 3.
  7. M

    Connect router to wifi hotspot

    Would like to lose the comcast modem (BYE-BYE Comcast!!) and connect my ac-68 to an iphone mobile hotspot. Also want to keep the firewall, yazfi, skynet, diversion, etc. tools. Do not want to use cables to make the connection. IIUC, one way to do this is to use a wireless/wifi internet adapter...
  8. M

    Stand-alone firewallsuggestions

    Strongly ditto dosborne and cptnoblivious! I'd add the possibility that some of your guests are -perhaps- "innocently" abusing your hospitality: using your portal to enter the wild west of hacking/attacking/porn/etc. (and which may earn you a knock on the front door). ISTM your LAN devices...
  9. M

    Are Asus routers running ASUSWRT-Merlin affected by NAT Slipstreaming? Mitigations?

    I used two lines. Added them after existing items in firewall-start: modprobe -r nf_nat_ftp modprobe -r nf_contrack_ftp NOTE: check spellings. my earlier post lost the "e" at the end of modprobe
  10. M

    Are Asus routers running ASUSWRT-Merlin affected by NAT Slipstreaming? Mitigations?

    F FWIW I had to use "modprobe -r"; don't have rmmod on my AC-68u. Thanks to ADFHog and all others on this short thread!!
  11. M

    How do we protect against this pinholing attack?

    Interesting! I sure don't understand the ramifications or degree of seriousness of this. - Perhaps use one of the IDS/IPS apps to flag (initially block) any atypical communications? - Snort/Suricata will likely develop specific signatures for common exploits using this (e.g. remote attempts...
  12. M

    securing internal network traffic against rogue apps / devices

    You might be interested in: https://www.snbforums.com/threads/suricata-ids-on-asuswrt-merlin.63280/ and https://www.snbforums.com/threads/experimental-snort3-ids-ips-on-asusmerlin-ac86-ax88-routers-only.66123/ These come with rules that'l flag many of the actions you listed. In IDS mode you'll...
  13. M

    Suricata Suricata - IDS on AsusWRT Merlin

    How much of that scalability would you guess is effected (and affected) through runtime parameters, and how much at compile time? So, under some loads and configurations investing in a big, VERY FAST usb device may help address a bottle neck on a little box? So perhaps users need to...
  14. M

    Suricata Suricata - IDS on AsusWRT Merlin

    Because I've seen it in earlier versions of suricata - nice logs saying stuff was dropped; in fact not dropped. Well, maybe Suricata 5.0.3 is doing the job (IPS) on your new box, but not necessarily the earlier versions on Merlin. That simple test can help prove it for Merlin. Yep...
  15. M

    Suricata Suricata - IDS on AsusWRT Merlin

    Well yes - 99% of the WAN "attacks" are internet noise filtered out by IPtables. And once it is tuned for my router, suricata will be quiet almost all of the time. no news is good news. For me the importance of suricata will not be telling me about inbound noise, but will be for...
  16. M

    Suricata Suricata - IDS on AsusWRT Merlin

    . . The question remains: are the REPORTED drops in fact being dropped?
  17. M

    Suricata Suricata - IDS on AsusWRT Merlin

    . Yep.... you need the fork. Jchud's script/display seems to display inbound/outbound nicely. tail can also (probably) be tweaked with grep to print out only outbound. But lacking IPS, ISTM you have equivalent, cumbersome control over inbound and outbound: Iptables blocklist manually effected...
  18. M

    Suricata Suricata - IDS on AsusWRT Merlin

    [ QUOTE="XIII, post: 610720, member: 26720"] How can I check that when I use [ USER=65319]@faux123[ /USER]'s configuration that packets are indeed being dopped? (IPS instead of IDS) Or do I need her/his fork to have that work? [ /QUOTE] ...
  19. M

    Suricata Suricata - IDS on AsusWRT Merlin

    . HEH ...OH MY .... 'BSD it is!! :) Please do keep us updated on your progress and what you end up with - hardware and software wise; what you put on the IPS box, and what (if anything) you keep on the AM!
  20. M

    Suricata Suricata - IDS on AsusWRT Merlin

    . Oh My! Exciting! Fun (..and a lot of work and time), though I confess that I don't know what an IPS appliance replacing suricata would entail. At the least: 1. Snort or Suricata to do packet and stream inspection/blocking? 2. VPN servers and clients to "decloak" encrypted streams/packets...
Top