Search results

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. P

    Adamm firewall - proper config

    To be honest I think my changes will probably affect some legitimate blocks. Probably 4 in 5 I can look at them and say yes that is clearly a false positive (for my / my households usage) and most of those are ACK RST. But for that other 1 in 5 its not so clear. Is it malicious or is it just one...
  2. P

    Skynet Skynet - Router Firewall & Security Enhancements

    I'm not 100% sure about the dos angle so I added a rule on raw prerouting to drop anything inbound on wan with a destination on the blacklist just to be sure, like: iptables -t raw -I PREROUTING -i ppp0 -p tcp -m set --match-set Blacklist dst -j DROP I cant seem to work out how the internal...
  3. P

    Adamm firewall - proper config

    This is the one that has me scratching my head the most. With the default behaviour i still get autobans on Microsoft / Apple / Google. I would have thought that others would be getting this too, oh well. Yeah I have forked a copy now and will gradually bring my changes up to date. My intention...
  4. P

    Adamm firewall - proper config

    Hi Adamm, firstly is it fine for me to continue this thread or would you prefer me to move to the main bulk thread? I'll stay here for this post, just a quick update. I ended up turning the autoban back on and started working through what was happening, how your code worked and what it all...
  5. P

    Skynet Skynet - Router Firewall & Security Enhancements

    Hi Adamm and all. Been working through trying to understand a couple of issues I have had with access to sites and the blacklist. With one of them I was getting a run of about 20 block entries in the log over about a 10min window. Long (long) story short, it turns out one of my devices in the...
  6. P

    Adamm firewall - proper config

    Done, thanks Adamm. Will monitor for the next few days and report back if I have any issues.
  7. P

    Adamm firewall - proper config

    .....and just as I finished that post off I saw this which looks very much (to me) like a legitimate (maybe?) website browser (tcp on port 443). Is this log information of any use to comment on what might be going wrong or what I have done wrong? If I am blocking traffic to my websites I'm going...
  8. P

    Adamm firewall - proper config

    except it hasn't seemed to help. I've stopped using the guest network (and added the manual whitelist 192.168.101.0/24 anyway) but in the last hour the firewall has flagged 508 attacks from port 993 (email) and 251 attacks from port 143 (also email) and all my autobans seem to be Microsoft /...
  9. P

    Adamm firewall - proper config

    That command returns blank: # nvram show | grep 192.168.101 size: 50151 bytes (15385 left) The 192.168.101 comes from a custom dnsmasq.conf which was intended to put the 6 guest wifi networks (3 x 2.4GHz, 3 x 5GHz) on their own subnets to isolate them both from each other and the main network...
  10. P

    Adamm firewall - proper config

    Adamm thankyou greatly for your awesome support with this! Here is the output of the requested command (from an RT-AC87U): # nvram show | grep 192.168.2.1 lan1_ipaddr=192.168.2.1 lan1_gateway=192.168.2.1 size: 50220 bytes (15316 left) I will work through the rest of your response and give a...
  11. P

    Adamm firewall - proper config

    Ok I may have just found something highly relevant. I have custom DHCP allocations for wireless connections, in particular different guest wireless networks get different allocations. For example my main home network is on 192.168.1.XXX whereas one of the guest wireless networks is on...
  12. P

    Adamm firewall - proper config

    This was one of the IP's that was blocked (not banned IIRC, just blocked). On the bottom right of the page it has "Validation: Whitelisted IP: contained in 207.46.0.0/19". I tried to find a downloadable list that perhaps contained all such validations but couldn't find anything. Probably good...
  13. P

    Adamm firewall - proper config

    I'm hoping for some assistance with the proper config of the Adamm firewall for my specific home setup. I have installed and run for a couple of days and just let it do its default out-of-the-box thing (no other setup than install / run). But after a couple of days it is clear I need to do some...
  14. P

    custom dhcp for wireless guest networks

    Thankyou for that RMerlin. I have tried a lot more, but I cant get it to work on the 5GHz side it looks like on the RT-AC87U it is not going to be possible to split the dhcp via dnsmasq for the 5GHz guest networks (the 2.4GHz guest networks work fine). It also appears (in my testing) that the...
  15. P

    Guest networks and DHCP

    I am a bit new to this but this is the script I am using and I think it works (YMMV). It just has some small modifications from some of those linked in previous posts. In part it is structured to put all the guest networks on their own subnets. I have the entware platform installed so I just...
  16. P

    custom dhcp for wireless guest networks

    Thanks Fitz Mutch. Yes, that is pretty much the script I am using. It also specifies that the 5Ghz guest interfaces should be coming up as wl1.1/wl1.2/wl1.3. How can I go about debugging why the 5GHz interfaces are spawning as vlan4000/vlan4001/vlan4002 instead of wl1.1/wl1.2/wl1.3? I am using...
  17. P

    custom dhcp for wireless guest networks

    I am trying to setup custom dhcp using dnsmasq for my wireless guest networks (RT87U / Firmware:380.66). i have a startup script that works for the 2.4GHz channels (virtual interfaces wl0.1, wl0.2 and wl0.3). However it does not work for the 5GHz channels (virtual interfaces vlan4000, vlan4001...
Top